Linux Compatible - Debian (Page 23)

DSA 730-1: New bzip2 packages fix file unauthorised permissions modification

Debian 10954 Published 2005-05-28 05:11 by Philipp Esselbach 0

New bzip2 packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 730-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
May 27th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : bzip2
Vulnerability : race condition
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2005-0953
Debian Bug : 303300

Imran Ghory discovered a race condition in bzip2, a high-quality block-sorting file compressor and decompressor. When decompressing a file in a directory an attacker has access to, bunzip2 could be tricked to set the file permissions to a different file the user has permissions to.

For the stable distribution (woody) this problem has been fixed in version 1.0.2-1.woody2

For the testing distribution (sarge) this problem has been fixed in version 1.0.2-6.

For the unstable distribution (sid) this problem has been fixed in version 1.0.2-6.

We recommend that you upgrade your bzip2 packages.

DSA 729-1: New PHP4 packages fix denial of service

Debian 10954 Published 2005-05-26 07:17 by Philipp Esselbach 0

DSA 728-2: New qpopper packages fix arbitrary file overwriting

Debian 10954 Published 2005-05-26 06:01 by Philipp Esselbach 0

New qpopper packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 728-2 security@debian.org
http://www.debian.org/security/ Martin Schulze
May 26th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : qpopper
Vulnerability : missing privilege release
Problem-Type : local
Debian-specific: no
CVE IDs : CAN-2005-1151 CAN-2005-1152

This advisory does only covers updated packages for Debian 3.0 alias woody.

Two bugs have been discovered in qpopper, an enhanced Post Office Protocol (POP3) server. The Common Vulnerability and Exposures project identifies the following problems:

CAN-2005-1151

Jens Steube discovered that while processing local files owned or provided by a normal user privileges weren't dropped, which could lead to the overwriting or creation of arbitrary files as root.

CAN-2005-1152

The upstream developers noticed that qpopper could be tricked to creating group- or world-writable files.

For the stable distribution (woody) these problems have been fixed in version 4.0.4-2.woody.5.

For the testing distribution (sarge) these problems have been fixed in version 4.0.5-4sarge1.

For the unstable distribution (sid) these problems will be fixed in version 4.0.5-4sarge1.

We recommend that you upgrade your qpopper package.

DSA 728-1: New qpopper packages fix arbitrary file overwriting

Debian 10954 Published 2005-05-25 10:54 by Philipp Esselbach 0

New qpopper packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 728-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
May 25th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : qpopper
Vulnerability : missing privilege release
Problem-Type : local
Debian-specific: no
CVE IDs : CAN-2005-1151 CAN-2005-1152

Two bugs have been discovered in qpopper, an enhanced Post Office Protocol (POP3) server. The Common Vulnerability and Exposures project identifies the following problems:

CAN-2005-1151

Jens Steube discovered that while processing local files owned or provided by a normal user privileges weren't dropped, which could lead to the overwriting or creation of arbitrary files as root.

CAN-2005-1152

The upstream developers noticed that qpopper could be tricked to creating group- or world-writable files.

For the stable distribution (woody) these problems have been fixed in version 4.0.4-2.woody.5.

For the testing distribution (sarge) these problems have been fixed in version 4.0.5-4sarge1.

For the unstable distribution (sid) these problems will be fixed in version 4.0.5-4sarge1.

We recommend that you upgrade your qpopper package.

DSA 727-1: New libconvert-uulib-perl packages fix arbitrary code exe

Debian 10954 Published 2005-05-20 13:33 by Philipp Esselbach 0

New libconvert-uulib-perl packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 727-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
May 20th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : libconvert-uulib-perl
Vulnerability : buffer overflow
Problem-Type : local (remote)
Debian-specific: no
CVE ID : CAN-2005-1349

Mark Martinec and Robert Lewis discovered a buffer overflow in Convert::UUlib, a Perl interface to the uulib library, which may result in the execution of arbitrary code.

For the stable distribution (woody) this problem has been fixed in version 0.201-2woody1.

For the testing (sarge) and unstable (sid) distributions this problem has been fixed in version 1.0.5.1-1.

We recommend that you upgrade your libconvert-uulib-perl package.

DSA 726-1: New oops packages fix format string vulnerability

Debian 10954 Published 2005-05-20 09:12 by Philipp Esselbach 0

New oops packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 726-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
May 20th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : oops
Vulnerability : format string vulnerability
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-1121
Debian Bug : 307360

A format string vulnerability has been discovered in the MySQL/PgSQL authentification module of Oops, a caching HTTP proxy server written for performance.

For the stable distribution (woody) this problem has been fixed in version 1.5.19.cvs.20010818-0.1woody1

For the unstable distribution (sid) this problem will be fixed soon.

We recommend that you upgrade your oops package.

DSA 725-1: New ppxp packages fix local root exploit

Debian 10954 Published 2005-05-19 15:36 by Philipp Esselbach 0

New ppxp packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 725-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
May 19th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : ppxp
Vulnerability : missing privilege release
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2005-0392

Jens Steube discovered that ppxp, yet another PPP program, does not release root privileges when opening potentially user supplied log files. This can be tricked into opening a root shell.

For the stable distribution (woody) this problem has been fixed in version 0.2001080415-6woody1.

For the unstable distribution (sid) this problem has been fixed in version 0.2001080415-11.

We recommend that you upgrade your ppxp package.

DSA 724-1: New phpsysinfo packages fix cross site scripting

Debian 10954 Published 2005-05-18 10:11 by Philipp Esselbach 0

New phpsysinfo packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 724-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
May 18th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : phpsysinfo
Vulnerability : design flaw
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-0870
Debian Bug : 301118

Maksymilian Arciemowicz discoverd several cross site scripting issues in phpsysinfo, a PHP based host information application.

For the stable distribution (woody) these problems have been fixed in version 2.0-3woody2.

For the testing (sarge) and unstable (sid) distribution these problems have been fixed in version 2.3-3.

We recommend that you upgrade your phpsysinfo package.

DSA 723-1: New XFree86 packages fix arbitrary code execution

Debian 10954 Published 2005-05-09 15:29 by Philipp Esselbach 0

New XFree86 packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 723-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
May 9th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : xfree86
Vulnerability : buffer overflow
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-0605
Debian Bug : 298939

A buffer overflow has been discovered in the Xpm library which is used in XFree86. A remote attacker could provide a specially crafted XPM image that could lead to the execution or arbitrary code.

For the stable distribution (woody) this problem has been fixed in version 4.1.0-16woody6

For the unstable distribution (sid) this problem will be fixed in version 4.3.0.dfsg.1-13, which is currently in preparation.

We recommend that you upgrade your xfree86 and associated packages.

DSA 722-1: New smail packages fix arbitrary code execution

Debian 10954 Published 2005-05-09 10:00 by Philipp Esselbach 0

New smail packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 722-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
May 9th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : smail
Vulnerability : buffer overflow
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-0892
Debian Bug : 301428

A buffer overflow has been discovered in Smail, an electronic mail transport system, which allows remote attackers and local users to execute arbitrary code.

For the stable distribution (woody) this problem has been fixed in version 3.2.0.114-4woody1.

For the unstable distribution (sid) this problem has been fixed in version 3.2.0.115-7.

We recommend that you upgrade your smail package.

DSA 721-1: New squid packages fix ACL bypass

Debian 10954 Published 2005-05-06 09:18 by Philipp Esselbach 0

New squid packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 721-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
May 6th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : squid
Vulnerability : design flaw
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-1345
Debian Bug : 307132

Michael Bhola discovered a bug in Squid, the popular WWW proxy cache. Squid does not trigger a fatal error when it identifies missing or invalid ACLs in the http_access configuration, which could lead to less restrictive ACLs than intended by the administrator.

For the stable distribution (woody) this problem has been fixed in version 2.4.6-2woody8.

For the unstable distribution (sid) this problem has been fixed in version 2.5.9-7.

We recommend that you upgrade your squid packages.

DSA 720-1: New smartlist packages fix unauthorised un/subscription

Debian 10954 Published 2005-05-03 15:37 by Philipp Esselbach 0

New smartlist packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 720-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
May 3rd, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : smartlist
Vulnerability : wrong input processing
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-0157

Jeroen van Wolffelaar noticed that the confirm add-on of SmartList, the listmanager used on lists.debian.org, which is used on that host as well, could be tricked to subscribe arbitrary addresses to the lists.

For the stable distribution (woody) this problem has been fixed in version 3.15-5.woody.1.

For the unstable distribution (sid) this problem has been fixed in version 3.15-18.

We recommend that you upgrade your smartlist package.

DSA 719-1: New prozilla packages fix arbitrary code execution

Debian 10954 Published 2005-04-28 15:09 by Philipp Esselbach 0

New prozilla packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 719-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 28th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : prozilla
Vulnerability : format string problems
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-0523
BugTraq ID : 12635

Several format string problems have been discovered in prozilla, a multi-threaded download accelerator, that can be exploited by a malicious server to execute arbitrary code with the rights of the user running prozilla.

For the stable distribution (woody) these problems have been fixed in version 1.3.6-3woody2.

For the unstable distribution (sid) these problems have been fixed in version 1.3.7.4-1.

We recommend that you upgrade your prozilla package.

DSA 718-1: New ethereal packages fix buffer overflow

Debian 10954 Published 2005-04-28 15:08 by Philipp Esselbach 0

New ethereal packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 718-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 28th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : ethereal
Vulnerability : buffer overflow
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-0739

A buffer overflow has been detected in the IAPP dissector of Ethereal, a commonly used network traffic analyser. A remote attacker may be able to overflow a buffer using a specially crafted packet. More problems have been discovered which don't apply to the version in woody but are fixed in sid as well.

For the stable distribution (woody) this problem has been fixed in version 0.9.4-1woody12.

For the unstable distribution (sid) these problems have been fixed in version 0.10.10-1.

We recommend that you upgrade your ethereal packages.

DSA 717-1: New lsh packages fix several vulnerabilities

Debian 10954 Published 2005-04-27 07:00 by Philipp Esselbach 0

New lsh packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 717-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 27th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : lsh-utils
Vulnerability : buffer overflow, typo
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2003-0826 CAN-2005-0814
Debian Bug : 211662

Several security relevant problems have been discovered in lsh, the alternative secure shell v2 (SSH2) protocol server. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities:

CAN-2003-0826

Bennett Todd discovered a heap buffer overflow in lshd which could lead to the execution of arbitrary code.

CAN-2005-0814

Niels Möller discovered a denial of service condition in lshd.

For the stable distribution (woody) these problems have been fixed in version 1.2.5-2woody3.

For the unstable distribution (sid) these problems have been fixed in version 2.0.1-2.

We recommend that you upgrade your lsh-server package.

DSA 716-1: New gaim packages fix denial of service

Debian 10954 Published 2005-04-27 05:15 by Philipp Esselbach 0

New gaim packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 716-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 27th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : gaim
Vulnerability : denial of service
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-0472

It has been discovered that certain malformed SNAC packets sent by other AIM or ICQ users can trigger an infinite loop in Gaim, a multi-protocol instant messaging client, and hence lead to a denial of service of the client.

Two more denial of service conditions have been discovered in newer versions of Gaim which are fixed in the package in sid but are not present in the package in woody.

For the stable distribution (woody) this problem has been fixed in version 0.58-2.5.

For the unstable distribution (sid) these problems have been fixed in version 1.1.3-1.

We recommend that you upgrade your gaim packages.

DSA 715-1: New cvs packages fix unauthorised repository access

Debian 10954 Published 2005-04-27 05:10 by Philipp Esselbach 0

New cvs packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 715-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 27th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : cvs
Vulnerability : serveral
Problem-Type : remote
Debian-specific: yes
CVE IDs : CAN-2004-1342 CAN-2004-1343
Debian Bug : 260200

Several problems have been discovered in the CVS server, which serves the popular Concurrent Versions System. The Common Vulnerability and Exposures project identifies the following problems:

CAN-2004-1342

Maks Polunin and Alberto Garcia discovered independently that using the pserver access method in connection with the repouid patch that Debian uses it is possible to bypass the password and gain access to the repository in question.

CAN-2004-1343

Alberto Garcia discovered that a remote user can cause the cvs server to crash when the cvs-repouids file exists but does not contain a mapping for the current repository, which can be used as a denial of service attack.

For the stable distribution (woody) these problems have been fixed in version 1.11.1p1debian-10.

For the unstable distribution (sid) these problems have been fixed in version 1.12.9-11.

We recommend that you upgrade your cvs package.

DSA 714-1 New kdelibs packages fix arbitrary code execution

Debian 10954 Published 2005-04-26 12:07 by Philipp Esselbach 0

New kdelibs packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 714-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 26th, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : kdelibs
Vulnerability : several
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-1046

KDE security team discovered several vulnerabilities in the PCX and other image file format readers in the KDE core libraries, some of them exploitable to execute arbitrary code. To a small extend the packages in woody are affected as well.

For the stable distribution (woody) this problem has been fixed in version 2.2.2-13.woody.14.

For the unstable distribution (sid) this problem has been fixed in version 3.3.2-5.

We recommend that you upgrade your kdelibs packages.

DSA 701-2: New samba packages fix correct sporadic crash

Debian 10954 Published 2005-04-21 14:26 by Philipp Esselbach 0

New samba packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 701-2 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 21st, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : samba
Vulnerability : integer overflows
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2004-1154
CERT advisory : VU#226184
Debian Bug : 302378

It has been discovered that the last security update for Samba, a LanManager like file and printer server for GNU/Linux and Unix-like systems caused the daemon to crash upon reload. This has been fixed. For reference below is the original advisory text:

Greg MacManus discovered an integer overflow in the smb daemon from Samba, a LanManager like file and printer server for GNU/Linux and Unix-like systems. Requesting a very large number of access control descriptors from the server could exploit the integer overflow, which may result in a buffer overflow which could lead to the execution of arbitrary code with root privileges. Upstream developers have discovered more possible integer overflows that are fixed with this update as well.

For the stable distribution (woody) these problems have been fixed in version 2.2.3a-15.

The version in the unstable distribution (sid) is not affected by this new problem.

We recommend that you upgrade your samba packages.

DSA 713-1: New junkbuster packages fix several vulnerabilities

Debian 10954 Published 2005-04-21 14:18 by Philipp Esselbach 0

New junkbuster packages are available for Debian GNU/Linux

---------------------------------------------------------------------------
Debian Security Advisory DSA 713-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 21st, 2005 http://www.debian.org/security/faq
---------------------------------------------------------------------------

Package : junkbuster
Vulnerability : several
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-1108 CAN-2005-1109

Several bugs have been found in junkbuster, a HTTP proxy and filter. The Common Vulnerability and Exposures project identifies the following vulnerabilities:

CAN-2005-1108

James Ranson discovered that an attacker can modify the referrer setting with a carefully crafted URL by accidently overwriting a global variable.

CAN-2005-1109

Tavis Ormandy from the Gentoo Security Team discovered several heap corruptions due to inconsistent use of an internal function that can crash the daemon or possibly lead to the execution of arbitrary code.

For the stable distribution (woody) these problems have been fixed in version 2.0.2-0.2woody1.

The unstable distribution (sid) doesn't contain the junkbuster package anymore.

We recommend that you upgrade your junkbuster package.