CVE-2002-0391

Name	CVE-2002-0391
Description	Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including dietlibc, allows remote attackers to execute arbitrary code by passing a large number of arguments to xdr_array through RPC services such as rpc.cmsd and dmispd.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-142, DSA-143, DSA-146, DSA-149, DSA-333

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
acm (PTS)	bullseye	6.0+20200416-1	fixed
	bookworm	6.0+20200416-1.1	fixed
	sid, trixie	6.0+20200416-1.2	fixed
dietlibc (PTS)	bullseye	0.34~cvs20160606-12	fixed
	bookworm	0.34~cvs20160606-14	fixed
	sid, trixie	0.34~cvs20160606-18	fixed
glibc (PTS)	bullseye	2.31-13+deb11u11	fixed
	bullseye (security)	2.31-13+deb11u10	fixed
	bookworm	2.36-9+deb12u9	fixed
	bookworm (security)	2.36-9+deb12u7	fixed
	sid, trixie	2.40-3	fixed
krb5 (PTS)	bullseye (security), bullseye	1.18.3-6+deb11u5	fixed
	bookworm, bookworm (security)	1.20.1-2+deb12u2	fixed
	sid, trixie	1.21.3-3	fixed
openafs (PTS)	bullseye	1.8.6-5	fixed
	bookworm	1.8.9-1	fixed
	sid	1.8.13-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
acm	source	woody	5.0-3.woody.1		DSA-333
acm	source	(unstable)	5.0-10
dietlibc	source	woody	0.12-2.4		DSA-146
dietlibc	source	(unstable)	0.20-0cvs20020808
glibc	source	woody	2.2.5-11.1		DSA-149
glibc	source	(unstable)	2.2.5-13
krb5	source	woody	1.2.4-5woody1		DSA-143
krb5	source	(unstable)	1.2.5-2
openafs	source	woody	1.2.3final2-6		DSA-142
openafs	source	(unstable)	1.2.6-1