13 matches found
Debian Security Advisory DSA 1659-1 (libspf2)
The remote host is missing an update to libspf2 announced via advisory DSA 1659-1. OpenVAS Vulnerability Test $Id: deb16591.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1659-1 libspf2 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Gentoo Security Advisory GLSA 200810-03 (libspf2)
The remote host is missing updates announced in advisory GLSA 200810-03. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
FreeBSD Ports: libspf2
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Debian: Security Advisory (DSA-1659-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreeBSD : libspf2 -- Buffer overflow (2ddbfd29-a455-11dd-a55e-00163e000016)
CVE reports : Heap-based buffer overflow in the SPFdnsresolvlookup function in Spfdnsresolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modified length field. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...
Debian DSA-1659-1 : libspf2 - buffer overflow
Dan Kaminsky discovered that libspf2, an implementation of the Sender Policy Framework SPF used by mail servers for mail filtering, handles malformed TXT records incorrectly, leading to a buffer overflow condition CVE-2008-2469 . Note that the SPF configuration template in Debian's Exim...
CVE-2008-2469
Heap-based buffer overflow in the SPFdnsresolvlookup function in Spfdnsresolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modified length field...
CVE-2008-2469
Heap-based buffer overflow in the SPFdnsresolvlookup function in Spfdnsresolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modified length field...
CVE-2008-2469
CVE-2008-2469: A heap-based buffer overflow in libspf2's DNS TXT record parsing (SPF DNS resolver) can be triggered by overly long TXT records, allowing remote code execution. Multiple advisories confirm the flaw resides in libspf2 prior to 1.2.8 and describe the impact as remote arbitrary code e...
CVE-2008-2469
Heap-based buffer overflow in the SPFdnsresolvlookup function in Spfdnsresolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modified length field...
[SECURITY] [DSA 1659-1] New libspf2 packages fix potential remote code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1659-1 [email protected] http://www.debian.org/security/ Florian Weimer October 23, 2008 http://www.debian.org/security/faq -...
DSA-1659-1 libspf2 - potential remote code execution
Bulletin has no description...
[Backports-security-announce] Security Update for libspf2
Gerfried Fuchs uploaded new packages for libspf2 which fixed the following security problem: CVE-2008-2469 Fix buffer overflows in DNS response parsing. For the etch-backports distribution the problem has been fixed in version 1.2.5.dfsg-5+lenny1bpo40+1. For the lenny distribution the problem has...