Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:439
HistoryNov 06, 2006 - 12:00 a.m.

NetBSD PPP驱动远程溢出漏洞

2006-11-0600:00:00
Root
www.seebug.org
21
JSON

NetBSD是一款免费开放源代码的UNIX性质的操作系统。

在处理从远程主机所接收到的连接控制协议(LCP)配置选项时,ppp(4)没有正确的验证选项长度,这可能导致在所分配的内核内存缓冲区以外读取或写入数据。

能够发送LCP报文的攻击者,包括ppp(4)连接的远端,可以导致内核忙碌、获得敏感信息或权限提升。

FreeBSD FreeBSD 6.x
FreeBSD FreeBSD 5.5
FreeBSD FreeBSD 5.4
FreeBSD FreeBSD 5.3
FreeBSD FreeBSD 4.x
NetBSD NetBSD 4.0_Beta
NetBSD NetBSD 3.1_RC1
NetBSD NetBSD 3.1
NetBSD NetBSD 3.0
NetBSD NetBSD 2.1
NetBSD NetBSD 2.0.3
NetBSD NetBSD 2.0.2
NetBSD NetBSD 2.0.1
FreeBSD

FreeBSD已经为此发布了一个安全公告(FreeBSD-SA-06:18)以及相应补丁:
FreeBSD-SA-06:18:Buffer overflow in ppp(4)
链接:<a href=“ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:18.ppp.asc” target=“_blank”>ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:18.ppp.asc</a>

补丁下载:

执行以下步骤之一:

  1. 将有漏洞的系统升级到4-STABLE, 5-STABLE或6-STABLE,或修改日期之后的RELENG_6_1,
    RELENG_6_0, RELENG_5_5, RELENG_5_4, RELENG_5_3或RELENG_4_11安全版本.

  2. 为当前系统打补丁:

以下补丁确认可应用于FreeBSD 4.11, 5.3, 5.4, 5.5, 6.0和6.1系统.

a) 从以下位置下载相关补丁,并使用PGP工具验证附带的PGP签名.

[FreeBSD 4.x]

fetch <a href=“http://security.FreeBSD.org/patches/SA-06:18/ppp4x.patch” target=“_blank”>http://security.FreeBSD.org/patches/SA-06:18/ppp4x.patch</a>

fetch <a href=“http://security.FreeBSD.org/patches/SA-06:18/ppp4x.patch.asc” target=“_blank”>http://security.FreeBSD.org/patches/SA-06:18/ppp4x.patch.asc</a>

[FreeBSD 5.3]

fetch <a href=“http://security.FreeBSD.org/patches/SA-06:18/ppp53.patch” target=“_blank”>http://security.FreeBSD.org/patches/SA-06:18/ppp53.patch</a>

fetch <a href=“http://security.FreeBSD.org/patches/SA-06:18/ppp53.patch.asc” target=“_blank”>http://security.FreeBSD.org/patches/SA-06:18/ppp53.patch.asc</a>

[FreeBSD 5.4, 5.5和6.x]

fetch <a href=“http://security.FreeBSD.org/patches/SA-06:18/ppp.patch” target=“_blank”>http://security.FreeBSD.org/patches/SA-06:18/ppp.patch</a>

fetch <a href=“http://security.FreeBSD.org/patches/SA-06:18/ppp.patch.asc” target=“_blank”>http://security.FreeBSD.org/patches/SA-06:18/ppp.patch.asc</a>

b) 以root执行以下命令:

cd /usr/src

patch < /path/to/patch

c) 如<URL:<a href=“http://www.freebsd.org/handbook/kernelconfig.html&gt;” target=“_blank”>http://www.freebsd.org/handbook/kernelconfig.html&gt;</a> 所述重新编译内核并重启系统.

JSON