MDKSA-2003:087

Package name

gkrellm

Date

2003-08-28

Advisory ID

MDKSA-2003:087

Affected versions

9.1 i586 , 9.1 i586

Problem description

A buffer overflow was discovered in gkrellmd, the server component of the gkrellm monitor package, in versions of gkrellm 2.1.x prior to 2.1.14. This buffer overflow occurs while reading data from connected gkrellm clients and can lead to possible arbitrary code execution as the user running the gkrellmd server. Updated packages are available for Mandrake Linux 9.1 which correct the problem.

Updated packages

9.1 i586

 411b6128256554b16c3beeb53bbae224  ppc/9.1/RPMS/gkrellm-2.1.7a-2.2mdk.ppc.rpm
257691a20effd147d53d1dd9d93a12dd  ppc/9.1/RPMS/gkrellm-devel-2.1.7a-2.2mdk.ppc.rpm
073b0b1f3d5b1b91776b7769bee8550c  ppc/9.1/RPMS/gkrellm-server-2.1.7a-2.2mdk.ppc.rpm
a3d8c546650754a5d69569a88d35782b  ppc/9.1/SRPMS/gkrellm-2.1.7a-2.2mdk.src.rpm

9.1 i586

 c02f29d80835be10c7474f7ecd1437ef  9.1/RPMS/gkrellm-2.1.7a-2.2mdk.i586.rpm
293591b66fa463f69a554ac2efcb1940  9.1/RPMS/gkrellm-devel-2.1.7a-2.2mdk.i586.rpm
a7b3793b971fef4865ba83d93b055b82  9.1/RPMS/gkrellm-server-2.1.7a-2.2mdk.i586.rpm
a3d8c546650754a5d69569a88d35782b  9.1/SRPMS/gkrellm-2.1.7a-2.2mdk.src.rpm

References

• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0723