Paul Baker wrote:
On Tuesday, August 13, 2002, at 03:21 AM, Martin Schulze wrote:
-
--------------------------------------------------------------------------
Debian Security Advisory DSA 149-1
[EMAIL PROTECTED]
http://www.debian.org/security/ Martin
Schulze
August 13th, 2002
-
--------------------------------------------------------------------------
Package : glibc
Vulnerability : integer overflow
Problem-Type : remote
Debian-specific: no
CVE Id : CAN-2002-0391
CERT advisory : VU#192995
Anyone aware of any particular daemon's that need to be restarted just
to be safe? I'd rather not have to type in the SSL passphrase for
apache+mod_ssl if I don't have to.
I did some ldd's and I did not find a single executable, that wasn't
dynamically linked against libc. (At least this is my interpretation of
ldd's output.)
Among those:
sshd
apache
mysqld
bind
postfix
syslogd
sh
I'm thinking about restarting the system.
regards,
Thiemo Nagel
$ ldd /usr/sbin/apache
libm.so.6 => /lib/libm.so.6 (0x4001b000)
libcrypt.so.1 => /lib/libcrypt.so.1 (0x4003c000)
libdb.so.2 => /lib/libdb.so.2 (0x40069000)
libdb2.so.2 => /lib/libdb2.so.2 (0x40076000)
libexpat.so.1 => /usr/lib/libexpat.so.1 (0x400b7000)
libdl.so.2 => /lib/libdl.so.2 (0x400d8000)
libc.so.6 => /lib/libc.so.6 (0x400db000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
$ ldd /usr/sbin/atd
libc.so.6 => /lib/libc.so.6 (0x4001b000)
libdl.so.2 => /lib/libdl.so.2 (0x40138000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
$ ldd /usr/sbin/cron
libpam.so.0 => /lib/libpam.so.0 (0x4001b000)
libc.so.6 => /lib/libc.so.6 (0x40023000)
libdl.so.2 => /lib/libdl.so.2 (0x40140000)
libcrypt.so.1 => /lib/libcrypt.so.1 (0x40143000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
$ ldd /sbin/getty
libc.so.6 => /lib/libc.so.6 (0x4001b000)
libdl.so.2 => /lib/libdl.so.2 (0x40138000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
$ ldd /sbin/klogd
libc.so.6 => /lib/libc.so.6 (0x4001b000)
libdl.so.2 => /lib/libdl.so.2 (0x40138000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
$ ldd /usr/lib/postfix/master
libpostfix-global.so.1 => /usr/lib/libpostfix-global.so.1
(0x4001b000)
libpostfix-util.so.1 => /usr/lib/libpostfix-util.so.1 (0x40033000)
libgdbm.so.1 => /usr/lib/libgdbm.so.1 (0x40051000)
libdb3.so.3 => /usr/lib/libdb3.so.3 (0x40057000)
libnsl.so.1 => /lib/libnsl.so.1 (0x400ff000)
libresolv.so.2 => /lib/libresolv.so.2 (0x40113000)
libc.so.6 => /lib/libc.so.6 (0x40123000)
libdl.so.2 => /lib/libdl.so.2 (0x40240000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
$ ldd /usr/lib/postfix/pickup
libpostfix-master.so.1 => /usr/lib/libpostfix-master.so.1
(0x4001b000)
libpostfix-global.so.1 => /usr/lib/libpostfix-global.so.1
(0x40021000)
libpostfix-util.so.1 => /usr/lib/libpostfix-util.so.1 (0x40039000)
libgdbm.so.1 => /usr/lib/libgdbm.so.1 (0x40057000)
libdb3.so.3 => /usr/lib/libdb3.so.3 (0x4005d000)
libnsl.so.1 => /lib/libnsl.so.1 (0x40105000)
libresolv.so.2 => /lib/libresolv.so.2 (0x40119000)
libc.so.6 => /lib/libc.so.6 (0x40129000)
libdl.so.2 => /lib/libdl.so.2 (0x40246000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
[EMAIL PROTECTED]:/home/admin# ldd /usr/lib/postfix/qmgr
/lib/snoopy.so => /lib/snoopy.so (0x40015000)
libpostfix-master.so.1 => /usr/lib/libpostfix-master.so.1
(0x4001b000)
libpostfix-global.so.1 => /usr/lib/libpostfix-global.so.1
(0x40021000)
libpostfix-util.so.1 => /usr/lib/libpostfix-util.so.1 (0x40039000)
libgdbm.so.1 => /usr/lib/libgdbm.so.1 (0x40057000)
libdb3.so.3 => /usr/lib/libdb3.so.3 (0x4005d000)
libnsl.so.1 => /lib/libnsl.so.1 (0x40105000)
libresolv.so.2 => /lib/libresolv.so.2 (0x40119000)
libc.so.6 => /lib/libc.so.6 (0x40129000)
libdl.so.2 => /lib/libdl.so.2 (0x40246000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
$ ldd /usr/sbin/named
libc.so.6 => /lib/libc.so.6 (0x4001b000)
libdl.so.2 => /lib/libdl.so.2 (0x40138000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
$ ldd /usr/sbin/popa3d
libpam.so.0 => /lib/libpam.so.0 (0x4001b000)
libc.so.6 => /lib/libc.so.6 (0x40023000)
libdl.so.2 => /lib/libdl.so.2 (0x40140000)
libcrypt.so.1 => /lib/libcrypt.so.1 (0x40143000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
$ ldd /bin/sh
libncurses.so.5 => /lib/libncurses.so.5 (0x4001b000)
libdl.so.2 => /lib/libdl.so.2 (0x40059000)
libc.so.6 => /lib/libc.so.6 (0x4005c000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
$ ldd /usr/sbin/mysqld
libwrap.so.0 => /lib/libwrap.so.0 (0x4001b000)
libdl.so.2 => /lib/libdl.so.2 (0x40023000)
libpthread.so.0 => /lib/libpthread.so.0 (0x40026000)
libz.so.1 => /usr/lib/libz.so.1 (0x4003a000)
libcrypt.so.1 => /lib/libcrypt.so.1 (0x40049000)
libnsl.so.1 => /lib/libnsl.so.1 (0x40076000)
libstdc++-libc6.2-2.so.3 => /usr/lib/libstdc++-libc6.2-2.so.3
(0x4008a000)
libm.so.6 => /lib/libm.so.6 (0x400d3000)
libc.so.6 => /lib/libc.so.6 (0x400f4000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
$ ldd /usr/sbin/sshd
libwrap.so.0 => /lib/libwrap.so.0 (0x4001b000)
libpam.so.0 => /lib/libpam.so.0 (0x40023000)
libdl.so.2 => /lib/libdl.so.2 (0x4002b000)
libutil.so.1 => /lib/libutil.so.1 (0x4002e000)
libz.so.1 => /usr/lib/libz.so.1 (0x40031000)
libnsl.so.1 => /lib/libnsl.so.1 (0x40040000)
libcrypto.so.0.9.6 => /usr/lib/libcrypto.so.0.9.6 (0x40054000)
libc.so.6 => /lib/libc.so.6 (0x40114000)
libcrypt.so.1 => /lib/libcrypt.so.1 (0x40231000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
$ ldd /usr/sbin/stunnel
libwrap.so.0 => /lib/libwrap.so.0 (0x4001b000)
libutil.so.1 => /lib/libutil.so.1 (0x40023000)
libpthread.so.0 => /lib/libpthread.so.0 (0x40026000)
libnsl.so.1 => /lib/libnsl.so.1 (0x4003a000)
libdl.so.2 => /lib/libdl.so.2 (0x4004e000)
libssl.so.0.9.6 => /usr/lib/libssl.so.0.9.6 (0x40051000)
libcrypto.so.0.9.6 => /usr/lib/libcrypto.so.0.9.6 (0x4007e000)
libc.so.6 => /lib/libc.so.6 (0x4013e000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
$ ldd /sbin/syslogd
libc.so.6 => /lib/libc.so.6 (0x4001b000)
libdl.so.2 => /lib/libdl.so.2 (0x40138000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
