Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections:  Developer -  High Performance -  Infrastructure -  IT Management -  Security -  Storage -
Linux Today Navigation
LT Home
Contribute
Contribute
Link to Us
Linux Jobs


More on LinuxToday


Mandrake Linux Advisories: eroaster, unzip

Aug 20, 2003, 21:59 (0 Talkback[s])

Mandrake Linux Security Update Advisory


Package name: eroaster
Advisory ID: MDKSA-2003:083
Date: August 19th, 2003
Affected versions: 9.0, 9.1, Corporate Server 2.1

Problem Description:

A vulnerability was discovered in eroaster where it does not take any security precautions when creating a temporary file for the lockfile. This vulnerability could be exploited to overwrite arbitrary files with the privileges of the user running eroaster.


References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0656


Updated Packages:

Corporate Server 2.1:
381dd0ff7119ea907f3e7c91125ed3d4 corporate/2.1/RPMS/eroaster-2.1.0-6.1mdk.noarch.rpm
859fd6b2fe922be90f2594e4b7e0a8f5 corporate/2.1/SRPMS/eroaster-2.1.0-6.1mdk.src.rpm

Mandrake Linux 9.0:
381dd0ff7119ea907f3e7c91125ed3d4 9.0/RPMS/eroaster-2.1.0-6.1mdk.noarch.rpm
859fd6b2fe922be90f2594e4b7e0a8f5 9.0/SRPMS/eroaster-2.1.0-6.1mdk.src.rpm

Mandrake Linux 9.1:
24914649a0aefd1733b474e44509baf0 9.1/RPMS/eroaster-2.1.0-6.1mdk.noarch.rpm
859fd6b2fe922be90f2594e4b7e0a8f5 9.1/SRPMS/eroaster-2.1.0-6.1mdk.src.rpm


Bug IDs fixed (see https://qa.mandrakesoft.com for more information):


To upgrade automatically, use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

A list of FTP mirrors can be obtained from:

http://www.mandrakesecure.net/en/ftp.php

All packages are signed by MandrakeSoft for security. You can obtain the GPG public key of the Mandrake Linux Security Team by executing:

gpg --recv-keys --keyserver www.mandrakesecure.net 0x22458A98

Please be aware that sometimes it takes the mirrors a few hours to update.

You can view other update advisories for Mandrake Linux at:

http://www.mandrakesecure.net/en/advisories/

MandrakeSoft has several security-related mailing list services that anyone can subscribe to. Information on these lists can be obtained by visiting:

http://www.mandrakesecure.net/en/mlist.php

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team
<security linux-mandrake.com>

Mandrake Linux Security Update Advisory


Package name: unzip
Advisory ID: MDKSA-2003:073-1
Date: August 19th, 2003
Original Advisory Date: July 7th, 2003
Affected versions: 8.2, 9.0, 9.1, Corporate Server 2.1, Multi Network Firewall 8.2

Problem Description:

A vulnerability was discovered in unzip 5.50 and earlier that allows attackers to overwrite arbitrary files during archive extraction by placing non-printable characters between two "." characters. These invalid characters are filtered which results in a ".." sequence.

The patch applied to these packages prevents unzip from writing to parent directories unless the "-:" command line option is used.

Update:

Ben Laurie found that the original patch used to fix this issue missed a case where the path component included a quoted slash. An updated patch was used to build these packages.


References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0282 http://marc.theaimsgroup.com/?l=bugtraq&m=105259038503175


Updated Packages:

Corporate Server 2.1:
eb83a1f819f0407da2a6abe8f9470e6d corporate/2.1/RPMS/unzip-5.50-4.2mdk.i586.rpm
ece7c5edb30cb80c00e902a61126e68d corporate/2.1/SRPMS/unzip-5.50-4.2mdk.src.rpm

Corporate Server 2.1/x86_64:
53ecb5284909bec78ef0b570dfbabf89 x86_64/corporate/2.1/RPMS/unzip-5.50-4.2mdk.x86_64.rpm
ece7c5edb30cb80c00e902a61126e68d x86_64/corporate/2.1/SRPMS/unzip-5.50-4.2mdk.src.rpm

Mandrake Linux 8.2:
da00ebf987ca4200ce2ed926bf4adaeb 8.2/RPMS/unzip-5.50-4.2mdk.i586.rpm
ece7c5edb30cb80c00e902a61126e68d 8.2/SRPMS/unzip-5.50-4.2mdk.src.rpm

Mandrake Linux 8.2/PPC:
07252553006b6d428289f4fdfadf46fd ppc/8.2/RPMS/unzip-5.50-4.2mdk.ppc.rpm
ece7c5edb30cb80c00e902a61126e68d ppc/8.2/SRPMS/unzip-5.50-4.2mdk.src.rpm

Mandrake Linux 9.0:
eb83a1f819f0407da2a6abe8f9470e6d 9.0/RPMS/unzip-5.50-4.2mdk.i586.rpm
ece7c5edb30cb80c00e902a61126e68d 9.0/SRPMS/unzip-5.50-4.2mdk.src.rpm

Mandrake Linux 9.1:
32f6a6726eb9cfe5d76aec74a71228d1 9.1/RPMS/unzip-5.50-4.2mdk.i586.rpm
ece7c5edb30cb80c00e902a61126e68d 9.1/SRPMS/unzip-5.50-4.2mdk.src.rpm

Mandrake Linux 9.1/PPC:
c4cc4eb7e92026ce5264daa57a42ce98 ppc/9.1/RPMS/unzip-5.50-4.2mdk.ppc.rpm
ece7c5edb30cb80c00e902a61126e68d ppc/9.1/SRPMS/unzip-5.50-4.2mdk.src.rpm

Multi Network Firewall 8.2:
da00ebf987ca4200ce2ed926bf4adaeb mnf8.2/RPMS/unzip-5.50-4.2mdk.i586.rpm
ece7c5edb30cb80c00e902a61126e68d mnf8.2/SRPMS/unzip-5.50-4.2mdk.src.rpm


Bug IDs fixed (see https://qa.mandrakesoft.com for more information):


To upgrade automatically, use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

A list of FTP mirrors can be obtained from:

http://www.mandrakesecure.net/en/ftp.php

All packages are signed by MandrakeSoft for security. You can obtain the GPG public key of the Mandrake Linux Security Team by executing:

gpg --recv-keys --keyserver www.mandrakesecure.net 0x22458A98

Please be aware that sometimes it takes the mirrors a few hours to update.

You can view other update advisories for Mandrake Linux at:

http://www.mandrakesecure.net/en/advisories/

MandrakeSoft has several security-related mailing list services that anyone can subscribe to. Information on these lists can be obtained by visiting:

http://www.mandrakesecure.net/en/mlist.php

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team
<security linux-mandrake.com>