oss-sec mailing list archives
CVE-2008-4619 / milw0rm6775
From: Tomas Hoger <thoger () redhat com>
Date: Tue, 28 Oct 2008 08:42:38 +0100
Hi! Just a heads up ... In the case you distribute rpcbind using (lib)tirpc as an RPC port mapper, you may be interested in the CVE-2008-4619. Some more info is in our BZ, along with Steve Dickson's patch: https://bugzilla.redhat.com/show_bug.cgi?id=468014 This is very likely the same issue as Solaris one, as tirpc is based on the Sun's RPC source code, and fails in the same place. -- Tomas Hoger / Red Hat Security Response Team
Current thread:
- CVE-2008-4619 / milw0rm6775 Tomas Hoger (Oct 28)
- Re: CVE-2008-4619 / milw0rm6775 Tomas Hoger (Oct 29)
- Re: CVE-2008-4619 / milw0rm6775 Steven M. Christey (Oct 31)
- Re: CVE-2008-4619 / milw0rm6775 Tomas Hoger (Nov 02)
- Re: CVE-2008-4619 / milw0rm6775 Steven M. Christey (Oct 31)
- Re: CVE-2008-4619 / milw0rm6775 Tomas Hoger (Oct 29)