Vigil@nce - CHICKEN: two vulnerabilities
December 2016 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use several vulnerabilities of CHICKEN.
Impacted products: Debian.
Severity: 2/4.
Creation date: 03/10/2016.
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in CHICKEN.
An attacker can generate a buffer overflow via
process-execute/spawn, in order to trigger a denial of service,
and possibly to run code. [severity:2/4; CVE-2016-6830]
An attacker can create a memory leak via process-execute/spawn, in
order to trigger a denial of service. [severity:1/4; CVE-2016-6831]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/CHICKEN-two-vulnerabilities-20742