Re: [unisog] patches available CERT® Advisory CA-2001-34 Buffer Overflow in System V Derived Login

Dave Ellingsberg dave.ellingsberg at csu.mnscu.edu
Fri Dec 14 14:25:46 GMT 2001


Sun patches are available now on sunsolve:

http://sunsolve.sun.com/securitypatch 

bigfoot


Dave Ellingsberg        WAN Specialist

Bigfoot at mankato.msus.edu

Ellingda at csu.mnscu.edu

Office Phone 507-n/a

Home Phone 507-354-8772

Pager 651-339-1909



>>> Michael Sanderson <sanders at cs.ubc.ca> 12/14/01 01:11AM >>>
Alan Vidmar wrote:
> 
> CERT® Advisory CA-2001-34 Buffer Overflow in System V Derived Login:
> Original release date: December 12, 2001

> Sun Solaris 8 and earlier
> 
Sun doesn't appear to have public patches yet.  Does anyone know if the
noexec_user_stack setting in Solaris will thwart the current exploit?

    Michael Sanderson



More information about the unisog mailing list