Multiple buffer overflows in libUil (libUil.so) in OpenMotif 2.2.3, and possibly other versions, allows attackers to execute arbitrary code via the (1) diag_issue_diagnostic function in UilDiags.c and (2) open_source_file function in UilSrcSrc.c.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Openmotif | Integrated_computer_solutions | 2.2.3 (including) | 2.2.3 (including) |
| Red Hat Enterprise Linux 3 | RedHat | openmotif-0:2.2.3-5.RHEL3.3 | * |
| Red Hat Enterprise Linux 3 | RedHat | openmotif21-0:2.1.30-9.RHEL3.7 | * |
| Red Hat Enterprise Linux 4 | RedHat | openmotif-0:2.2.3-10.RHEL4.1 | * |
| Red Hat Enterprise Linux 4 | RedHat | openmotif21-0:2.1.30-11.RHEL4.5 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | jabberd-0:2.0s10-3.38.rhn | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el4 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | jfreechart-0:0.9.20-3.rhn | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | openmotif21-0:2.1.30-11.RHEL4.6 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | perl-Crypt-CBC-0:2.24-1.el4 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | rhn-apache-0:1.3.27-36.rhn.rhel4 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | rhn-modjk-0:1.2.23-2rhn.rhel4 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | rhn-modperl-0:1.29-16.rhel4 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | rhn-modssl-0:2.8.12-8.rhn.10.rhel4 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | tomcat5-0:5.0.30-0jpp_10rh | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | jabberd-0:2.0s10-3.37.rhn | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el3 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | jfreechart-0:0.9.20-3.rhn | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | openmotif21-0:2.1.30-9.RHEL3.8 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | perl-Crypt-CBC-0:2.24-1.el3 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | rhn-apache-0:1.3.27-36.rhn.rhel3 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | rhn-modjk-0:1.2.23-2rhn.rhel3 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | rhn-modperl-0:1.29-16.rhel3 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | rhn-modssl-0:2.8.12-8.rhn.10.rhel3 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | tomcat5-0:5.0.30-0jpp_10rh | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | jabberd-0:2.0s10-3.38.rhn | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el4 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | jfreechart-0:0.9.20-3.rhn | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | openmotif21-0:2.1.30-11.RHEL4.6 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | perl-Crypt-CBC-0:2.24-1.el4 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | rhn-apache-0:1.3.27-36.rhn.rhel4 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | rhn-modjk-0:1.2.23-2rhn.rhel4 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | rhn-modperl-0:1.29-16.rhel4 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | rhn-modssl-0:2.8.12-8.rhn.10.rhel4 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | tomcat5-0:5.0.30-0jpp_10rh | * |
| Openmotif | Ubuntu | dapper | * |
| Openmotif | Ubuntu | devel | * |
| Openmotif | Ubuntu | edgy | * |
| Openmotif | Ubuntu | feisty | * |
References
- http://marc.info/?l=full-disclosure\u0026m=113349242925897\u0026w=2
- http://securitytracker.com/id?1015303
- http://www.redhat.com/support/errata/RHSA-2006-0272.html
- http://www.redhat.com/support/errata/RHSA-2008-0261.html
- http://www.securityfocus.com/archive/1/418459/100/0/threaded
- http://www.securityfocus.com/bid/15684
- http://www.securityfocus.com/bid/15686
- http://www.vupen.com/english/advisories/2005/2709
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23388
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23389
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9393
- http://marc.info/?l=full-disclosure\u0026m=113349242925897\u0026w=2
- http://securitytracker.com/id?1015303
- http://www.redhat.com/support/errata/RHSA-2006-0272.html
- http://www.redhat.com/support/errata/RHSA-2008-0261.html
- http://www.securityfocus.com/archive/1/418459/100/0/threaded
- http://www.securityfocus.com/bid/15684
- http://www.securityfocus.com/bid/15686
- http://www.vupen.com/english/advisories/2005/2709
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23388
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23389
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9393