漏洞信息详情

Linux gpm拒绝服务漏洞

• CNNVD编号：CNNVD-199911-068
• 危害等级： 低危
  
• CVE编号： CVE-2000-0531
• 漏洞类型： 其他
• 发布时间： 1999-11-23
• 威胁类型： 本地
• 更新时间： 2006-09-05
• 厂        商： caldera
• 漏洞来源： and exploit/update posted to Bugtraq on June 20, 2000.');">Discovered by Toma...

漏洞简介

Linux gpm程序存在漏洞。本地用户可以利用具有STREAM套接字/dev/gpmctl设备导致服务拒绝。

漏洞公告

This was patched in RedHat's "Rawhide" release and a fixed version of gpm is available at: ftp://ftp.redhat.com/pub/Linux/redhat-rawhide/i386/RedHat/RPMS/gpm-1.19.2-1.i386.rpm Updates for OpenLinux 2.3 and 2.4 are also available from Caldera. Caldera OpenLinux 2.3

• Caldera gpm-1.17.8-5 ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/RPMS/gp m-1.17.8-5.i386.rpm

• Caldera eServer 2.3: gpm-1.17.8-5 ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/RPMS/gpm- 1.17.8-5.i386.rpm

• Caldera gpm-1.19.2-4 ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/RPMS/gpm -1.19.2-4.i386.rpm

参考网址

来源: XF 名称: linux-gpm-gpmctl-dos 链接:http://xforce.iss.net/static/5010.php 来源: BID 名称: 1377 链接:http://www.securityfocus.com/bid/1377 来源: BUGTRAQ 名称: 20000620 Bug in gpm 链接:http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.10006201453090.1812-200000@apollo.aci.com.pl 来源: REDHAT 名称: RHSA-2000:045 链接:http://www.redhat.com/support/errata/RHSA-2000-045.HTML 来源: BUGTRAQ 名称: 20000728 MDKSA:2000-025 gpm update 链接:http://archives.neohapsis.com/archives/bugtraq/2000-07/0409.HTML

受影响实体

• Caldera Openlinux:2.3  
• Caldera Openlinux:2.4  
• Caldera Openlinux_eserver:2.3  

补丁

暂无