发布日期:2010-01-27
更新日期:2010-02-01
受影响系统:
ircd-ratbox ircd-ratbox 2.x
不受影响系统:
ircd-ratbox ircd-ratbox 2.2.9
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 37979
CVE ID: CVE-2010-0300
ircd-ratbox是全功能的ircd服务程序。
远程攻击者可以通过向ratbox IRC服务器发送特制的HELP命令触发空指针引用,导致服务崩溃。
<*来源:Aaron Sethman (androsyn@ratbox.org)
链接:
*>
建议:
--------------------------------------------------------------------------------
厂商补丁:
Debian
------
Debian已经为此发布了一个安全公告(DSA-1980-1)以及相应补丁:
DSA-1980-1:integer underflow/denial of service
链接:
补丁下载:
Source archives:
+lenny1.dsc
Size/MD5 checksum: 1139 a48d912892925013b37fb773841d6710
Size/MD5 checksum: 756749 75896381ea6330aea860b35fff3c34bb
+lenny1.diff.gz
Size/MD5 checksum: 115007 a8d23129d0675ff779e5e315f8632a6b
+lenny1.diff.gz
Size/MD5 checksum: 18289 04a221b2b8dfd0654778a6608c7cb66b
+lenny1.dsc
Size/MD5 checksum: 1230 f79125aafcc5d9fcbd09bedadd69fce7
Size/MD5 checksum: 673439 0eb7d1430a997a37af03f8b2f9eed4bb
Architecture independent packages:
+lenny1_all.deb
Size/MD5 checksum: 65708 85dba185f2fdd9e7b3c423ae8722cc2f
alpha architecture (DEC Alpha)
+lenny1_alpha.deb
Size/MD5 checksum: 568252 35a559f24895dab0fbe71f6af3a8c0b1
+lenny1_alpha.deb
Size/MD5 checksum: 929788 583d32d5afc9747d824499183d4a5761
+lenny1_alpha.deb
Size/MD5 checksum: 660008 1a2bca514133dbc27f91bca69ed2122e
amd64 architecture (AMD x86_64 (AMD64))
+lenny1_amd64.deb
Size/MD5 checksum: 937710 2867b5535578c017699418acab7565b7
+lenny1_amd64.deb
Size/MD5 checksum: 542006 52ca320cdd28849bd65065c921f03623
+lenny1_amd64.deb
Size/MD5 checksum: 634416 d320f0d1b77cb08cb0caa9c9644d13aa
arm architecture (ARM)
+lenny1_arm.deb
Size/MD5 checksum: 589350 451a5bcf2b4b8f40e39128be3fdc479d
armel architecture (ARM EABI)
+lenny1_armel.deb
Size/MD5 checksum: 894654 4daf0784d8865e75c378630d7cf2d870
+lenny1_armel.deb
Size/MD5 checksum: 595420 bf40953d00dbccd069b1596b6c84eadc
+lenny1_armel.deb
Size/MD5 checksum: 504238 785107a5a9fa3dcd88f2a12916d47092
hppa architecture (HP PA RISC)