An iproute update has been released for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 492-1 security@debian.org
http://www.debian.org/security/ Matt Zimmerman
April 18th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : iproute
Vulnerability : denial of service
Problem-Type : local
Debian-specific: no
CVE Ids : CAN-2003-0856
Debian Bug : 242994
Herbert Xu reported that local users could cause a denial of service against iproute, a set of tools for controlling networking in Linux kernels. iproute uses the netlink interface to communicate with the kernel, but failed to verify that the messages it received came from the kernel (rather than from other user processes).
For the current stable distribution (woody) this problem has been fixed in version 20010824-8woody1.
For the unstable distribution (sid), this problem will be fixed soon.
Debian Planet reports that GNOME 2.6 is ready for Debian SID (unstable)
New Kernel 2.4.19-mips packages has been released for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 491-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 17th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : kernel-source-2.4.19 kernel-patch-2.4.19-mips
Vulnerability : several vulnerabilities
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178
Several serious problems have been discovered in the Linux kernel. This update takes care of Linux 2.4.17 for the MIPS architecture.
The following security matrix explains which kernel versions for which architectures are already fixed and which will be removed instead.
Architecture stable (woody) unstable (sid) remove in sid
source 2.4.19-4.woody2 2.4.25-3 2.4.19-11
mips 2.4.19-0.020911.1.woody4 2.4.25-0.040415.1 2.4.19-0.020911.8
We recommend that you upgrade your kernel packages immediately, either with a Debian provided kernel or with a self compiled one.
Updated Zope packages are available for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 490-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 17th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : zope
Vulnerability : arbitrary code execution
Problem-Type : remote
Debian-specific: no
CVE ID : CVE-2002-0688
A vulnerability has been discovered in the index support of the ZCatalog plug-in in Zope, an open source web application server. A flaw in the security settings of ZCatalog allows anonymous users to call arbitrary methods of catalog indexes. The vulnerability also allows untrusted code to do the same.
For the stable distribution (woody) this problem has been fixed in version 2.5.1-1woody1.
For the unstable distribution (sid) this problem has been fixed in version 2.6.0-0.1 and higher.
Updated Kernel 2.4.17-mips packages has been released for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 489-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 17th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : kernel-source-2.4.17 kernel-patch-2.4.17-mips
Vulnerability : several vulnerabilities
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178
Several serious problems have been discovered in the Linux kernel. This update takes care of Linux 2.4.17 for the PowerPC/apus and S/390 architectures.
The following security matrix explains which kernel versions for which architectures are already fixed and which will be removed instead.
Architecture stable (woody) unstable (sid) remove in sid
source 2.4.17-1woody3 2.4.25-3 2.4.19-11
mips 2.4.17-0.020226.2.woody6 fixed soon 2.4.19-0.020911.8
mipsel 2.4.17-0.020226.2.woody6 2.4.25-0.040415.1 2.4.19-0.020911.9
We recommend that you upgrade your kernel packages immediately, either with a Debian provided kernel or with a self compiled one.
New logcheck packages has been released for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 488-1 security@debian.org
http://www.debian.org/security/ Matt Zimmerman
April 16th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : logcheck
Vulnerability : insecure temporary directory
Problem-Type : local
Debian-specific: no
CVE Ids : CAN-2004-0404
Christian Jaeger reported a bug in logcheck which could potentially be exploited by a local user to overwrite files with root privileges. logcheck utilized a temporary directory under /var/tmp without taking security precautions. While this directory is created when logcheck is installed, and while it exists there is no vulnerability, if at any time this directory is removed, the potential for exploitation exists.
For the current stable distribution (woody) this problem has been fixed in version 1.1.1-13.1woody1.
For the unstable distribution (sid), this problem has been fixed in version 1.1.1-13.2.
An updated perl package has been released for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 431-2 security@debian.org
http://www.debian.org/security/ Matt Zimmerman
April 16th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : perl
Vulnerability : information leak
Problem-Type : local
Debian-specific: no
CVE Ids : CAN-2003-0618
Paul Szabo discovered a number of similar bugs in suidperl, a helper program to run perl scripts with setuid privileges. By exploiting these bugs, an attacker could abuse suidperl to discover information about files (such as testing for their existence and some of their permissions) that should not be accessible to unprivileged users.
DSA 431-1 incorporated a partial fix for this problem. This advisory includes a more complete fix which corrects some additional cases.
For the current stable distribution (woody) this problem has been fixed in version 5.6.1-8.7.
For the unstable distribution, this problem has been fixed in version 5.8.3-3.
New neon packages has been released for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 487-1 security@debian.org
http://www.debian.org/security/ Matt Zimmerman
April 16th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : neon
Vulnerability : format string
Problem-Type : remote
Debian-specific: no
CVE Ids : CAN-2004-0179
Multiple format string vulnerabilities were discovered in neon, an HTTP and WebDAV client library. These vulnerabilities could potentially be exploited by a malicious WebDAV server to execute arbitrary code with the privileges of the process using libneon.
For the current stable distribution (woody) these problems have been fixed in version 0.19.3-2woody3.
For the unstable distribution (sid), these problems have been fixed in version 0.24.5-1.
New cvs packages has been released for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 486-1 security@debian.org
http://www.debian.org/security/ Matt Zimmerman
April 16th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : cvs
Vulnerability : several
Problem-Type : remote
Debian-specific: no
CVE Ids : CAN-2004-0180 CAN-2004-0405
Two vulnerabilities have been discovered and fixed in CVS:
CAN-2004-0180 - Sebastian Krahmer discovered a vulnerability whereby a malicious CVS pserver could create arbitary files on the client system during an update or checkout operation, by supplying absolute pathnames in RCS diffs.
CAN-2004-0405 - Derek Robert Price discovered a vulnerability whereby a CVS pserver could be abused by a malicious client to view the contents of certain files outside of the CVS root directory using relative pathnames containing "../".
For the current stable distribution (woody) these problems have been fixed in version 1.11.1p1debian-9woody2.
For the unstable distribution (sid), these problems will be fixed soon.
An updated for ssmtp has been released for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 485-1 security@debian.org
http://www.debian.org/security/ Matt Zimmerman
April 14th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : ssmtp
Vulnerability : format string
Problem-Type : remote
Debian-specific: no
CVE Ids : CAN-2004-0156
Max Vozeler discovered two format string vulnerabilities in ssmtp, a simple mail transport agent. Untrusted values in the functions die() and log_event() were passed to printf-like functions as format strings. These vulnerabilities could potentially be exploited by a remote mail relay to gain the privileges of the ssmtp process (including potentially root).
For the current stable distribution (woody) this problem will be fixed in version 2.50.6.1.
For the unstable distribution (sid), this problem will be fixed soon.
New xonix packages has been released for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 484-1 security@debian.org
http://www.debian.org/security/ Matt Zimmerman
April 14th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : xonix
Vulnerability : failure to drop privileges
Problem-Type : local
Debian-specific: no
CVE Ids : CAN-2004-0157
Steve Kemp discovered a vulnerability in xonix, a game, where an external program was invoked while retaining setgid privileges. A local attacker could exploit this vulnerability to gain gid "games".
For the current stable distribution (woody) this problem will be fixed in version 1.4-19woody1.
For the unstable distribution (sid), this problem will be fixed soon.
The kernel update for Debian GNU/Linux has been re-released because of a build error
---------------------------------------------------------------------------
Debian Security Advisory DSA 479-2 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 14th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : kernel-image-2.4.18-1-i386
Vulnerability : several vulnerabilities
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178
Several serious problems have been discovered in the Linux kernel. This update takes care of Linux 2.4.18 for the i386 architecture. This advisory replaces the i386 part of DSA 479-1 (except for the i386bf part). An unfortunate build error caused some of the kernel packages in DSA 479-1 to be broken. They are updated with this advisory.
These problems will also be fixed by upstream in Linux 2.4.26 and future versions of 2.6.
The following security matrix explains which kernel versions for which architecture are already fixed. Kernel images in the unstable Debian distribution (sid) will be fixed soon.
An updated MySQL package has been released for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 483-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 14th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : mysql
Vulnerability : insecure temporary file creation
Problem-Type : local
Debian-specific: no
CVE IDs : CAN-2004-0381 CAN-2004-0388
Bugtraq ID : 9976
Two vulnerabilities have been discovered in mysql, a common database system. Two scripts contained in the package don't create temporary files in a secure fashion. This could allow a local attacker to overwrite files with the privileges of the user invoking the MySQL server, which is often the root user. The Common Vulnerabilities and Exposures identifies the following problems:
CAN-2004-0381
The script mysqlbug in MySQL allows local users to overwrite arbitrary files via a symlink attack.
CAN-2004-0388
The script mysqld_multi in MySQL allows local users to overwrite arbitrary files via a symlink attack.
For the stable distribution (woody) these problems have been fixed in version 3.23.49-8.6.
For the unstable distribution (sid) these problems will be fixed in version 4.0.18-6 of mysql-dfsg.
We recommend that you upgrade your mysql, mysql-dfsg and related packages.
Debian Planet reports that Martin Michlmayr was re-elected for a second term as Debian Project Leader.
A kernel update for the kernel-source-2.4.17, kernel-patch-2.4.17-apus, kernel-patch-2.4.17-s390, and kernel-image-2.4.17-s390 packages is now available for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 482-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 14th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : kernel-source-2.4.17 kernel-patch-2.4.17-apus kernel-patch-2.4.17-s390 kernel-image-2.4.17-s390
Vulnerability : several vulnerabilities
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178
Several serious problems have been discovered in the Linux kernel. This update takes care of Linux 2.4.17 for the PowerPC/apus and S/390 architectures. The Common Vulnerabilities and Exposures project identifies the following problems that will be fixed with this update:
New Kernel 2.4.17 packages (ia64) has been released for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 481-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 14th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : kernel-image-2.4.17-ia64
Vulnerability : several vulnerabilities
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178
Several serious problems have been discovered in the Linux kernel. This update takes care of Linux 2.4.17 for the IA-64 architecture. The Common Vulnerabilities and Exposures project identifies the following problems that will be fixed with this update:
Two kernel updates for Debian has been released for kernel-image-2.4.17-hppa and kernel-image-2.4.18-hppa
---------------------------------------------------------------------------
Debian Security Advisory DSA 480-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 14th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : kernel-image-2.4.17-hppa kernel-image-2.4.18-hppa
Vulnerability : several vulnerabilities
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178
Several serious problems have been discovered in the Linux kernel. This update takes care of Linux 2.4.17 and 2.4.18 for the hppa (PA-RISC) architecture. The Common Vulnerabilities and Exposures project identifies the following problems that will be fixed with this update:
A Kernel 2.4.18 update has been released for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 479-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
April 14th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : kernel-source-2.4.18 kernel-image-2.4.18-1-alpha kernel-image-2.4.18-1-i386 kernel-image-2.4.18-i386bf kernel-patch-2.4.18-powerpc
Vulnerability : several vulnerabilities
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2004-0003 CAN-2004-0010 CAN-2004-0109 CAN-2004-0177 CAN-2004-0178
Several serious problems have been discovered in the Linux kernel. This update takes care of Linux 2.4.18 for the alpha, i386 and powerpc architectures. The Common Vulnerabilities and Exposures project identifies the following problems that will be fixed with this update:
DistroWatch reports that Progeny has released an alpha version of Progeny Debian 2.0
A tcpdump update has been released for Debian GNU/Linux
---------------------------------------------------------------------------
Debian Security Advisory DSA 478-1 security@debian.org
http://www.debian.org/security/ Matt Zimmerman
April 6th, 2004 http://www.debian.org/security/faq
---------------------------------------------------------------------------
Package : tcpdump
Vulnerability : denial of service
Problem-Type : remote
Debian-specific: no
CVE Ids : CAN-2004-0183 CAN-2004-0184
tcpdump, a tool for network monitoring and data acquisition, was found to contain two vulnerabilities whereby tcpdump could be caused to crash through attempts to read from invalid memory locations. This bug is triggered by certain invalid ISAKMP packets.
For the current stable distribution (woody) these problems have been fixed in version 3.6.2-2.8.
For the unstable distribution (sid), these problems have been fixed in version 3.7.2-4.
We recommend that you update your tcpdump package.
