[nas] nas: Multiple Vulnerabilities in nas 1.9.3

Erik Auerswald auerswal at unix-ag.uni-kl.de
Thu Aug 8 14:33:59 MDT 2013


Hi,

On Wed, Aug 07, 2013 at 02:14:44PM +0430, Hamid Zamani wrote:
> 
> Subject: nas: Multiple Vulnerabilities in nas 1.9.3
> Package: nas
> Version: 1.9.3-5
> 
> Dear Maintainer,
> 
> Recently i found some vulnerabilities that described below.

Thanks for reporting those!

> [...]
> ========================================================================
> Format String Vulnerability may occur at misusing functions like syslog
> 
> File : server/os/aulog.c: +40
> Function : osLogMsg
> ...
>         openlog("nas", LOG_PID, LOG_DAEMON);
>         syslog(LOG_DEBUG, buf); // possible format string vulnerability  ,
> syslog(LOG_DEBUG, %s, buf)
>         closelog();

This has been fixed already in svn revision r285 on 2012-01-22. There has
been no NAS release with this fix yet.

Thanks,
Erik
-- 
In the beginning, there were not enough colors.
                        -- Guy Keren


More information about the nas mailing list