For your information. But now the bug is published, so all servers should really be updated as fast as possible. Regards Alex

Von: Thierry Carrez <koon@gentoo.org> Datum: 28. Januar 2005 23:07:30 Uhr MEZ An: gentoo-announce@lists.gentoo.org Cc: bugtraq@securityfocus.com, full-disclosure@lists.netsys.com, security-alerts@linuxsecurity.com Betreff: [ GLSA 200501-40 ] ngIRCd: Buffer overflow User-Agent: Mozilla Thunderbird 1.0 (X11/20041208)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200501-40 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: High Title: ngIRCd: Buffer overflow Date: January 28, 2005 Bugs: #79705 ID: 200501-40

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis ========

ngIRCd is vulnerable to a buffer overflow that can be used to crash the daemon and possibly execute arbitrary code.

Background ==========

ngIRCd is a free open source daemon for Internet Relay Chat (IRC).

Affected packages =================

------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-irc/ngircd < 0.8.2 >= 0.8.2

Description ===========

Florian Westphal discovered a buffer overflow caused by an integer underflow in the Lists_MakeMask() function of lists.c.

Impact ======

A remote attacker can exploit this buffer overflow to crash the ngIRCd daemon and possibly execute arbitrary code with the rights of the ngIRCd daemon process.

Workaround ==========

There is no known workaround at this time.

Resolution ==========

All ngIRCd users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=net-irc/ngIRCd-0.8.2"

References ==========

[ 1 ] ngIRCd Release Annoucement

http://arthur.ath.cx/pipermail/ngircd-ml/2005-January/000228.html

Availability ============

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200501-40.xml

Concerns? =========

Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org.

License =======

Copyright 2005 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.0

-- Alexander Barton, Freiburg, Germany http://www.barton.de/, alex@barton.de