Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA1255] DSA-1255-1 libgtop2


Vulnerability Assessment Details

[DSA1255] DSA-1255-1 libgtop2

Vulnerability Assessment Summary
DSA-1255-1 libgtop2

Detailed Explanation for this Vulnerability Assessment

Liu Qishuai discovered that the GNOME gtop library performs insufficient
sanitising when parsing the system's /proc table, which may lead to
the execution of arbitrary code.
For the stable distribution (sarge) this problem has been fixed in
version 2.6.0-4sarge1.
For the upcoming stable distribution (etch) this problem has been
fixed in version 2.14.4-3.
For the unstable distribution (sid) this problem has been fixed in
version 2.14.4-3.
We recommend that you upgrade your libgtop2 packages.


Solution : http://www.debian.org/security/2007/dsa-1255
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is (C) 2007 Michel Arboi

Cables, Connectors

NEW Allied Telesis AT-SPSX SFP Transceiver Module 990-001201-00
$8.94
NEW Allied Telesis AT-SPSX SFP Transceiver Module 990-001201-00 picture614203-B21 HP NC552SFP DUAL PORT 10GbE SERVER ADAPTER OCE11102-HP 615406-001
$34.88
614203-B21 HP NC552SFP DUAL PORT 10GbE SERVER ADAPTER OCE11102-HP 615406-001 pictureOriginal AA1419043-E6 1-port 1000Base-T SFP GBIC for Nortel switches
$10.0
Original AA1419043-E6 1-port 1000Base-T SFP GBIC for Nortel switches pictureNortel Ethernet Routing Switch 1612G with 12 SFP GBIC slots DJ1412B03-E5
$50.0
Nortel Ethernet Routing Switch 1612G with 12 SFP GBIC slots DJ1412B03-E5 picture


Discussions

No Discussions have been posted on this vulnerability.