DSA 661-2: New f2c packages fix insecure temporary files

Debian 10954 Published by Philipp Esselbach 0

New f2c packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 661-2 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 20th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : f2c
Vulnerability : insecure temporary files
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2005-0017

Dan McMahill noticed that our our advisory DSA 661-1 did not correct the multiple insecure files problem, hence, this update. For completeness below is the original advisory text:

Javier Fernández-Sanguino Peña from the Debian Security Audit project discovered that f2c and fc, which are both part of the f2c package, a fortran 77 to C/C++ translator, open temporary files insecurely and are hence vulnerable to a symlink attack. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities:

CAN-2005-0017

Multiple insecure temporary files in the f2c translator.

For the stable distribution (woody) and all others including testing this problem has been fixed in version 20010821-3.2.

We recommend that you upgrade your f2c package.

DSA 712-1: New geneweb packages fix insecure file operations

Debian 10954 Published by Philipp Esselbach 0

New geneweb packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 712-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 19th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : geneweb
Vulnerability : insecure file operations
Problem-Type : local
Debian-specific: yes
CVE ID : CAN-2005-0391
Debian Bug : 304405

Tim Dijkstra discovered a problem during the upgrade of geneweb, a genealogy software with web interface. The maintainer scripts automatically converted files without checking their permissions and content, which could lead to the modification of arbitrary files.

For the stable distribution (woody) this problem has been fixed in version 4.06-2woody1.

For the unstable distribution (sid) this problem has been fixed in version 4.10-7.

We recommend that you upgrade your geneweb package.

DSA 711-1: New info2www packages fix cross-site scripting vulnerability

Debian 10954 Published by Philipp Esselbach 0

New info2www packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 711-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 19th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : info2www
Vulnerability : missing input sanitising
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2004-1341
Debian Bug : 281655

Nicolas Gregoire discovered a cross-site scripting vulnerability in info2www, a converter for info files to HTML. A malicious person could place a harmless looking link on the web that could cause arbitrary commands to be executed in the browser of the victim user.

For the stable distribution (woody) this problem has been fixed in version 1.2.2.9-20woody1.

For the unstable distribution (sid) this problem has been fixed in version 1.2.2.9-23.

We recommend that you upgrade your info2www package.

DSA 710-1: New gtkhtml packages fix denial of service

Debian 10954 Published by Philipp Esselbach 0

New gtkhtml packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 710-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 18th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : gtkhtml
Vulnerability : null pointer dereference
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2003-0541
Debian Bug : 279726

Alan Cox discovered a problem in gtkhtml, an HTML rendering widget used by the Evolution mail reader. Certain malformed messages could cause a cras due to a null pointer dereference.

For the stable distribution (woody) this problem has been fixed in version 1.0.2-1.woody1.

For the unstable distribution (sid) this problem has been fixed in version 1.0.4-6.2.

Debian GNU/Linux 3.0 updated (r5)

Debian 10954 Published by Philipp Esselbach 0

Debian GNU/Linux 3.0r5 is now available:

This is the fifth update of Debian GNU/Linux 3.0 (codename ‘woody’) which mainly adds security updates to the stable release, along with a few corrections to serious problems. Those who frequently update from security.debian.org won't have to update many packages and most updates from security.debian.org are included in this update.

Please note that this update does not produce a new version of Debian GNU/Linux 3.0 but only adds a few updated packages to it. There is no need to throw away 3.0 CDs but only to update against ftp.debian.org after an installation, in order to incorporate those late changes.

DSA 709-1: New libexif packages fix arbitrary code execution

Debian 10954 Published by Philipp Esselbach 0

New libexif packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 709-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 15th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : libexif
Vulnerability : buffer overflow
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-0664
Debian Bug : 298464

Sylvain Defresne discovered a buffer overflow in libexif, a library that parses EXIF files (such as JPEG files with extra tags). This bug could be exploited to crash the application and maybe to execute arbitrary code as well.

For the stable distribution (woody) this problem has been fixed in version 0.5.0-1woody1.

For the unstable distribution (sid) this problem has been fixed in version 0.6.9-5.

We recommend that you upgrade your libexif package.

DSA 708-1: New PHP3 packages fix denial of service

Debian 10954 Published by Philipp Esselbach 0

New PHP3 packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 708-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 15th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : php3
Vulnerability : missing input sanitising
Problem-Type : local (remote)
Debian-specific: no
CVE ID : CAN-2005-0525
Debian Bug : 302701

An iDEFENSE researcher discovered two problems in the image processing functions of PHP, a server-side, HTML-embedded scripting language, of which one is present in PHP3 as well. When reading a JPEG image, PHP can be tricked into an endless loop due to insufficient input validation.

For the stable distribution (woody) this problem has been fixed in version 3.0.18-23.1woody3.

For the unstable distribution (sid) this problem has been fixed in version 3.0.18-31.

We recommend that you upgrade your php3 package.

DSA 707-1: New mysql packages fix several vulnerabilities

Debian 10954 Published by Philipp Esselbach 0

New mysql packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 707-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 13th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : mysql
Vulnerability : several
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2004-0957
BugTraq ID : 12781
Debian Bug : 285276 296674 300158

Several vulnerabilities have been discovered in MySQL, a popular database. The Common Vulnerabilities and Exposures project identifies the following problems:

CAN-2004-0957

Sergei Golubchik discovered a problem in the access handling for similar named databases. If a user is granted privileges to a database with a name containing an underscore ("_"), the user also gains privileges to other databases with similar names.

CAN-2005-0709

Stefano Di Paola discovered that MySQL allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls.

CAN-2005-0710

Stefano Di Paola discovered that MySQL allows remote authenticated users with INSERT and DELETE privileges to bypass library path restrictions and execute arbitrary libraries by using INSERT INTO to modify the mysql.func table.

CAN-2005-0711

Stefano Di Paola discovered that MySQL uses predictable file names when creating temporary tables, which allows local users with CREATE TEMPORARY TABLE privileges to overwrite arbitrary files via a symlink attack.

For the stable distribution (woody) these problems have been fixed in version 3.23.49-8.11.

For the unstable distribution (sid) these problems have been fixed in version 4.0.24-5 of mysql-dfsg and in version 4.1.10a-6 of mysql-dfsg-4.1.

We recommend that you upgrade your mysql packages.

DSA 706-1: New axel packages fix arbitrary code execution

Debian 10954 Published by Philipp Esselbach 0

New axel packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 706-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 13th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : axel
Vulnerability : buffer overflow
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-0390
BugTraq ID : 13059

Ulf Härnhammar from the Debian Security Audit Project discovered a buffer overflow in axel, a light download accellerator. When reading remote input the program did not check if a part of the input can overflow a buffer and maybe trigger the execution of arbitrary code.

For the stable distribution (woody) this problem has been fixed in version 1.0a-1woody1.

For the unstable distribution (sid) this problem has been fixed in version 1.0b-1.

We recommend that you upgrade your axel package.

PHP 4.3.11 and 5.0.4 for Debian Woody

Debian 10954 Published by Philipp Esselbach 1

DotDeb.org has released PHP 4.3.11 and 5.0.4 for Debian GNU/Linux 3.0

Here the apt sources for /etc/apt/sources.list:
deb http://packages.dotdeb.org ./
deb-src http://sources.dotdeb.org ./

DSA 705-1: New wu-ftpd packages fix denial of service

Debian 10954 Published by Philipp Esselbach 0

New wu-ftpd packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 705-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 4th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : wu-ftpd
Vulnerability : missing input sanitising
Problem-Type : remote
Debian-specific: no
CVE IDs : CAN-2005-0256 CAN-2003-0854

Several denial of service conditions have been discovered in wu-ftpd, the popular FTP daemon. The Common Vulnerabilities and Exposures project identifies the following problems:

CAN-2005-0256

Adam Zabrocki discovered a denial of service condition in wu-ftpd that could be exploited by a remote user and cause the server to slow down the server by resource exhaustion.

CAN-2003-0854

Georgi Guninski discovered that /bin/ls may be called from within wu-ftpd in a way that will result in large memory consumption and hence slow down the server.

For the stable distribution (woody) these problems have been fixed in version 2.6.2-3woody5.

For the unstable distribution (sid) these problems have been fixed in version 2.6.2-19.

We recommend that you upgrade your wu-ftpd package.

DSA 704-1: New remstats packages fix several vulnerabilities

Debian 10954 Published by Philipp Esselbach 0

New remstats packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 704-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 4th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : remstats
Vulnerability : tempfile, missing input sanitising
Problem-Type : local, remote
Debian-specific: no
CVE IDs : CAN-2005-0387 CAN-2005-0388

Jens Steube discovered several vulnerabilities in remstats, the remote statistics system. The Common Vulnerabilities and Exposures Project identifies the following problems:

CAN-2005-0387

When processing uptime data on the unix-server a temporary file is opened in an insecure fashion which could be used for a symlink attack to create or overwrite arbitrary files with the permissions of the remstats user.

CAN-2005-0388

The remoteping service can be exploited to execute arbitrary commands due to missing input sanitising.

For the stable distribution (woody) these problems have been fixed in version 1.00a4-8woody1.

For the unstable distribution (sid) these problems have been fixed in version 1.0.13a-5.

We recommend that you upgrade your remstats packages.

DSA 703-1: New krb5 packages fix arbitrary code execution

Debian 10954 Published by Philipp Esselbach 0

New krb5 packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 703-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 1st, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : krb5
Vulnerability : buffer overflows
Problem-Type : remote
Debian-specific: no
CVE IDs : CAN-2005-0468 CAN-2005-0469
CERT advisories: VU#341908 VU#291924

Several problems have been discovered in telnet clients that could be exploited by malicious daemons the client connects to. The Common Vulnerabilities and Exposures project identifies the following problems:

CAN-2005-0468

Gaël Delalleau discovered a buffer overflow in the env_opt_add() function that allow a remote attacker to execute arbitrary code.

CAN-2005-0469

Gaël Delalleau discovered a buffer overflow in the handling of the LINEMODE suboptions in telnet clients. This can lead to the execution of arbitrary code when connected to a malicious server.

For the stable distribution (woody) these problems have been fixed in version 1.2.4-5woody8.

For the unstable distribution (sid) these problems have been fixed in version 1.3.6-1.

We recommend that you upgrade your krb5 package.

DSA 702-1: New ImageMagick packages fix several vulnerabilities

Debian 10954 Published by Philipp Esselbach 0

New ImageMagick packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 702-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 1st, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : imagemagick
Vulnerability : several
Problem-Type : local (remote)
Debian-specific: no
CVE IDs : CAN-2005-0397 CAN-2005-0759 CAN-2005-0760 CAN-2005-0762
BugTraq ID : 12875
Debian Bug : 297990

Several vulnerabilities have been discovered in ImageMagick, a commonly used image manipulation library. These problems can be exploited by a carefully crafted graphic image. The Common Vulnerabilities and Exposures project identifies the following problems:

CAN-2005-0397

Tavis Ormandy discovered a format string vulnerability in the filename handling code which allows a remote attacker to cause a denial of service and possibly execute arbitrary code.

CAN-2005-0759

Andrei Nigmatulin discovered a denial of service condition which can be caused by an invalid tag in a TIFF image.

CAN-2005-0760

Andrei Nigmatulin discovered that the TIFF decoder is vulnerable to accessing memory out of bounds which will result in a segmentation fault.

CAN-2005-0762

Andrei Nigmatulin discovered a buffer overflow in the SGI parser which allows a remote attacker to execute arbitrary code via a specially crafted SGI image file.

For the stable distribution (woody) these problems have been fixed in version 5.4.4.5-1woody6.

For the unstable distribution (sid) these problems have been fixed in version 6.0.6.2-2.2.

DSA 701-1: New samba packages fix arbitrary code execution

Debian 10954 Published by Philipp Esselbach 0

New samba packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 701-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
March 31st, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : samba
Vulnerability : integer overflows
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2004-1154
CERT advisory : VU#226184

Greg MacManus discovered an integer overflow in the smb daemon from Samba, a LanManager like file and printer server for GNU/Linux and Unix-like systems. Requesting a very large number of access control descriptors from the server could exploit the integer overflow, which may result in a buffer overflow which could lead to the execution of arbitrary code with root privileges. Upstream developers have discovered more possible integer overflows that are fixed with this update as well.

For the stable distribution (woody) these problems have been fixed in version 2.2.3a-14.2.

For the unstable distribution (sid) these problems have been fixed in version 3.0.10-1.

We recommend that you upgrade your samba packages.

DSA 700-1: New mailreader packages fix cross-site scripting

Debian 10954 Published by Philipp Esselbach 0

New mailreader packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 700-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
March 30th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : mailreader
Vulnerability : missing input sanitising
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-0386

Ulf Härnhammar from the Debian Security Audit Project discovered a cross-site scripting problem in mailreader, a simple, but powerful WWW mail reader system, when displaying messages of the MIME types text/enriched or text/richtext.

For the stable distribution (woody) this problem has been fixed in version 2.3.29-5woody2.

For the unstable distribution (sid) this problem has been fixed in version 2.3.29-11.

We recommend that you upgrade your mailreader package.

DSA 699-1: New netkit-telnet-ssl packages

Debian 10954 Published by Philipp Esselbach 0

New netkit-telnet-ssl packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 699-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
March 29th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : netkit-telnet-ssl
Vulnerability : buffer overflow
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-0469

iDEFENSE researchers discovered a buffer overflow in the handling of the LINEMODE suboptions in telnet clients. This can lead to the execution of arbitrary code when connected to a malicious server.

For the stable distribution (woody) this problem has been fixed in version 0.17.17+0.1-2woody4.

For the unstable distribution (sid) this problem will be fixed soon.

We recommend that you upgrade your telnet-ssl package.

DSA 698-1: New mc packages fix buffer overflow

Debian 10954 Published by Philipp Esselbach 0

New mc packages are avaiable for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 698-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
March 29th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : mc
Vulnerability : buffer overflow
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2005-0763

An unfixed buffer overflow has been discovered by Andrew V. Samoilov in mc, the midnight commander, a file browser and manager. This update also fixes a regression from DSA 497.

For the stable distribution (woody) this problem has been fixed in version 4.5.55-1.2woody6.

For the unstable distribution (sid) this problem has already been fixed.

We recommend that you upgrade your mc packages.

DSA 695-1: New xli packages fix several vulnerabilities

Debian 10954 Published by Philipp Esselbach 0

New xli packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 695-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
March 21st, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : xli
Vulnerability : buffer overflow, input sanitising, integer overflow
Problem-Type : local (remote)
Debian-specific: no
CVE IDs : CAN-2001-0775 CAN-2005-0638 CAN-2005-0639
BugTraq ID : 3006
Debian Bug : 298039

Several vulnerabilities have been discovered in xli, an image viewer for X11. The Common Vulnerabilities and Exposures project identifies the following problems:

CAN-2001-0775

A buffer overflow in the decoder for FACES format images could be exploited by an attacker to execute arbitrary code. This problem has been fixed in xloadimage in DSA 069 already.

CAN-2005-0638

Tavis Ormandy of the Gentoo Linux Security Audit Team has reported a flaw in the handling of compressed images, where shell meta-characters are not adequately escaped.

CAN-2005-0639

Insufficient validation of image properties in have been discovered which could potentially result in buffer management errors.

For the stable distribution (woody) these problems have been fixed in version 1.17.0-11woody1.

For the unstable distribution (sid) these problems have been fixed in version 1.17.0-18.

We recommend that you upgrade your xli package.

DSA 694-1: New xloadimage packages fix several vulnerabilities

Debian 10954 Published by Philipp Esselbach 0

New xloadimage packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 694-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
March 21st, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : xloadimage
Vulnerability : missing input sanitising, integer overflow
Problem-Type : local (remote)
Debian-specific: no
CVE ID : CAN-2005-0638 CAN-2005-0639
Debian Bug : 298926

Several vulnerabilities have been discovered in xloadimage, an image viewer for X11. The Common Vulnerabilities and Exposures project identifies the following problems:

CAN-2005-0638

Tavis Ormandy of the Gentoo Linux Security Audit Team has reported a flaw in the handling of compressed images, where shell meta-characters are not adequately escaped.

CAN-2005-0639

Insufficient validation of image properties in have been discovered which could potentially result in buffer management errors.

For the stable distribution (woody) these problems have been fixed in version 4.1-10woody1.

For the unstable distribution (sid) these problems have been fixed in version 4.1-14.2.

We recommend that you upgrade your xloadimage package.

Previous Page

Next Page

Windows

Linux

macOS

Community

  • Lexonight
    Hey everyone,Wanted to share a project I've been b ...
  • SeveG
    need some help here... situationPC= Packard BellOS= win1 ...
  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...