Hi,
As the advisory says: "...Additional
commercial and open-source Unix operating systems use implementations of
SunRPC, and may also be vulnerable..."...
it seems that glibc based systems (eg: most, if not all, linuxes)
are also vulnerable to exactly the same xdr_array problem.
(take a look at glibc-2.2.5/sunrpc/xdr_array.c)
riq.
--- for a personal reply use: Ricardo Quesada <riq@corest.com>
