[Oraclevm-errata] OVMSA-2009-0022 Important: Oracle VM 2.1 dnsmasq security update
Errata Announcements for Oracle VM
oraclevm-errata at oss.oracle.com
Tue Sep 8 09:52:31 PDT 2009
Oracle VM Security Advisory OVMSA-2009-0022
The following updated rpms for Oracle VM 2.1 have been uploaded to the
Unbreakable Linux Network:
i386:
dnsmasq-2.45-1.1.el5_3.i386.rpm
SRPMS:
http://oss.oracle.com/oraclevm/server/SRPMS-updates/dnsmasq-2.45-1.1.el5_3.src.rpm
Description of changes:
Following security fixes are included in this errata:
CVE-2009-2957 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2957>
Heap-based buffer overflow in the tftp_request function in tftp.c in
dnsmasq before 2.50, when --enable-tftp is used, might allow remote
attackers to execute arbitrary code via a long filename in a TFTP
packet, as demonstrated by a read (aka RRQ) request.
CVE-2009-2958 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2958>
The tftp_request function in tftp.c in dnsmasq before 2.50, when
--enable-tftp is used, allows remote attackers to cause a denial of
service (NULL pointer dereference and daemon crash) via a TFTP read (aka
RRQ) request with a malformed blksize option.
[2.45-1.1.el5]
- problems with strings when enabling tftp CVE-2009-2957 and CVE-2009-2957
- Resolves: rhbg#519021
[2.45-1.el5.1]
- update to new upstream version
- fixes for CVE-2008-1447/CERT VU#800113
- Resolves: rhbz#454869
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://oss.oracle.com/pipermail/oraclevm-errata/attachments/20090908/bec9d702/attachment.html
More information about the Oraclevm-errata
mailing list