Debian Security Advisory

DSA-595-1 bnc -- buffer overflow

Date Reported:

24 Nov 2004

Affected Packages:

bnc

Vulnerable:

Yes

Security database references:

In Mitre's CVE dictionary: CVE-2004-1052.

More information:

Leon Juranic discovered that BNC, an IRC session bouncing proxy, does not always protect buffers from being overwritten. This could exploited by a malicious IRC server to overflow a buffer of limited size and execute arbitrary code on the client host.

For the stable distribution (woody) this problem has been fixed in version 2.6.4-3.3.

This package does not exist in the testing or unstable distributions.

We recommend that you upgrade your bnc package.

Fixed in:

Debian GNU/Linux 3.0 (woody)

Source:: http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4-3.3.dsc; http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4-3.3.diff.gz; http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4.orig.tar.gz
Alpha:: http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4-3.3_alpha.deb
ARM:: http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4-3.3_arm.deb
Intel IA-32:: http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4-3.3_i386.deb
Intel IA-64:: http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4-3.3_ia64.deb
HPPA:: http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4-3.3_hppa.deb
Motorola 680x0:: http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4-3.3_m68k.deb
Big endian MIPS:: http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4-3.3_mips.deb
Little endian MIPS:: http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4-3.3_mipsel.deb
PowerPC:: http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4-3.3_powerpc.deb
IBM S/390:: http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4-3.3_s390.deb
Sun Sparc:: http://security.debian.org/pool/updates/main/b/bnc/bnc_2.6.4-3.3_sparc.deb

MD5 checksums of the listed files are available in the original advisory.