Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections:  Developer -  High Performance -  Infrastructure -  IT Management -  Security -  Storage -
Linux Today Navigation
LT Home
Contribute
Contribute
Link to Us
Linux Jobs


More on LinuxToday


tinysofa Advisories: kerberos5, apache

Jun 03, 2004, 12:58 (0 Talkback[s])

tinysofa Security Advisory #2004-009

Package names: kerberos5
Summary: Arbitary Code Execution
Advisory ID: TSSA-2004-009
Date: 2004-06-02
Affected versions: tinysofa enterprise server 1.0 tinysofa enterprise server 1.0-U1


Security Fixes

Description

kerberos5:

  • The krb5_aname_to_localname() library function contains multiple buffer overflows which could be exploited to gain unauthorized root access. Exploitation of these flaws requires an unusual combination of factors, including successful authentication to a vulnerable service and a non-default configuration on the target service. This flaw effects all releases of MIT Kerberos 5 [0], up to and including krb5-1.3.3.

This problem has been assigned the id MITKRB5-SA-2004-001 [1].

References

[0] http://web.mit.edu/kerberos/www/
[1] http://web.mit.edu/kerberos/www/advisories/

Recommended Action

We recommend that all systems with these packages installed be upgraded. Please note that if you do not need the functionality provided by this package, you may want to remove it from your system.

Location

All tinysofa updates are available from
<URI:http://http.tinysofa.org/pub/tinysofa/updates/>
<URI:ftp://ftp.tinysofa.org/pub/tinysofa/updates/>

Automatic Updates

Users of the SWUP tool can enjoy having updates automatically installed using 'swup --upgrade'.

Questions?

Check out our mailing lists:
<URI:http://www.tinysofa.org/support/>

Verification

This advisory is signed with the tinysofa security sign key. This key is available from:
<URI:http://pgp.mit.edu:11371/pks/lookup?opget&search0xAEDCBB4B>

All tinysofa packages are signed with the tinysofa stable sign key. This key is available from:
<URI:http://pgp.mit.edu:11371/pks/lookup?opget&search0x0F1240A2>

The advisory is available from the tinysofa errata database at <URI:http://www.tinysofa.org/support/errata/>
or directly at
<URI:http://www.tinysofa.org/support/errata/2004/009.html>

MD5sums Of The Packages


3b57bce78cadabfb6a231bbc6bb32b6c kerberos5-1.3.3-3ts.i586.rpm
f13a566fa54b42bf7ea5fe34bdb22e75 kerberos5-devel-1.3.3-3ts.i586.rpm
5a1f1c757fe960e8510dc1b219e5bf41 kerberos5-libs-1.3.3-3ts.i586.rpm

--
tinysofa Security Team <security at tinysofa dot org>


tinysofa Security Advisory #2004-008

Package names: apache
Summary: Boundary Condition Error
Advisory ID: TSSA-2004-008
Date: 2004-06-02
Affected versions: tinysofa enterprise server 1.0 tinysofa enterprise server 1.0-U1


Security Fixes

Description

apache:

  • Georgi Guninski discovered [1] a stack-based buffer overflow in the "SSLOptions +FakeBasicAuth" implementation of Apache's SSL/TLS extension module mod_ssl [0]. The overflow can occur if the Subject-DN in the client certificate exceeds 6KB in length and mod_ssl is configured to trust the issuing CA. The Common Vulnerabilities and Exposures (CVE) project assigned the id CAN-2004-0488 [2] to the problem.

References

[0] http://www.modssl.org/
[1] http://lists.netsys.com/pipermail/full-disclosure/2004-May/021610.html
[2] http://cve.mitre.org/cgi-bin/cvename.cgi?nameCAN-2004-0488

Recommended Action

We recommend that all systems with these packages installed be upgraded. Please note that if you do not need the functionality provided by this package, you may want to remove it from your system.

Location

All tinysofa updates are available from
<URI:http://http.tinysofa.org/pub/tinysofa/updates/>
<URI:ftp://ftp.tinysofa.org/pub/tinysofa/updates/>

Automatic Updates

Users of the SWUP tool can enjoy having updates automatically installed using 'swup --upgrade'.

Questions?

Check out our mailing lists:
<URI:http://www.tinysofa.org/support/>

Verification

This advisory is signed with the tinysofa security sign key.
This key is available from:
<URI:http://pgp.mit.edu:11371/pks/lookup?opget&search0xAEDCBB4B>

All tinysofa packages are signed with the tinysofa stable sign key.
This key is available from:
<URI:http://pgp.mit.edu:11371/pks/lookup?opget&search0x0F1240A2>

The advisory is available from the tinysofa errata database at
<URI:http://www.tinysofa.org/support/errata/>
or directly at
<URI:http://www.tinysofa.org/support/errata/2004/008.html>

MD5sums Of The Packages

b3ba8a04271c9b998527088b795fefdc apache-2.0.49-9ts.i586.rpm
2503a219d5bab57badd24df4c65c8647 apache-dbm-2.0.49-9ts.i586.rpm
8186ab1bdea195361f728e7a2251328a apache-devel-2.0.49-9ts.i586.rpm
3386f280b2ee1589eb1010d7a0d2ec35 apache-manual-2.0.49-9ts.i586.rpm
3e9e97b467af635997066bffc4fbbec8 apr-0.9.5-9ts.i586.rpm
7175e597215b0708ebd79c34e656d5c7 apr-devel-0.9.5-9ts.i586.rpm
c553f65ab1b16124171ea0f0c800102a apr-util-0.9.5-9ts.i586.rpm
742f59fc0f3cc5f05cc3414c1b20db97 apr-util-devel-0.9.5-9ts.i586.rpm

--
tinysofa Security Team <security at tinysofa dot org>