|
 |
Conectiva LinuxCONECTIVA LINUX SECURITY ANNOUNCEMENT
PACKAGE : mplayer
DESCRIPTION iDEFENSE[2] found a buffer overflow vulnerability[3] due to an error in dynamically allocating memory and further investigation by mplayer team found more vulnerabilities. This announcement fixes these vulnerabilities.
SOLUTION
REFERENCES
UPDATED PACKAGES
ADDITIONAL INSTRUCTIONS
Detailed instructions regarding the use of apt and upgrade examples can be found at http://distro.conectiva.com.br/atualizacoes/#apt?idioma=en All packages are signed with Conectiva's GPG key. The key and instructions on how to import it can be found at http://distro.conectiva.com.br/seguranca/chave/?idioma=en Instructions on how to check the signatures of the RPM packages can be found at http://distro.conectiva.com.br/seguranca/politica/?idioma=en All our advisories and generic update instructions can be viewed at http://distro.conectiva.com.br/atualizacoes/?idioma=en Copyright (c) 2004 Conectiva Inc. http://www.conectiva.com Gentoo LinuxGentoo Linux Security Advisory GLSA 200501-01
Severity: Normal SynopsisLinPopUp contains a buffer overflow potentially allowing execution of arbitrary code. BackgroundLinPopUp is a graphical application that acts as a frontend to Samba client messaging functions, allowing a Linux desktop to communicate with a Microsoft Windows computer that runs Winpopup. Affected packages
DescriptionStephen Dranger discovered that LinPopUp contains a buffer overflow in string.c, triggered when replying to a remote user message. ImpactA remote attacker could craft a malicious message that, when replied using LinPopUp, would exploit the buffer overflow. This would result in the execution of arbitrary code with the privileges of the user running LinPopUp. WorkaroundThere is no known workaround at this time. ResolutionAll LinPopUp users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-im/linpopup-2.0.4-r1"
References[ 1 ] CAN-2004-1282 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1282 [ 2 ] Stephen Dranger Advisory http://tigger.uic.edu/~jlongs2/holes/linpopup.txt AvailabilityThis GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200501-01.xml Concerns?Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. LicenseCopyright 2004 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.0 Gentoo Linux Security Advisory GLSA 200501-02
Severity: Normal SynopsisThe fixps and psmandup scripts in the a2ps package are vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files. Backgrounda2ps is an Any to Postscript filter that can convert to Postscript from many filetypes. fixps is a script that fixes errors in Postscript files. psmandup produces a Postscript file for printing in manual duplex mode. Affected packages
DescriptionJavier Fernandez-Sanguino Pena discovered that the a2ps package contains two scripts that create insecure temporary files (fixps and psmandup). ImpactA local attacker could create symbolic links in the temporary files directory, pointing to a valid file somewhere on the filesystem. When fixps or psmandup is executed, this would result in the file being overwritten with the rights of the user running the utility. WorkaroundThere is no known workaround at this time. ResolutionAll a2ps users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-text/a2ps-4.13c-r2"
References[ 1 ] Secunia SA13641 http://secunia.com/advisories/13641/ [ 2 ] CAN-2004-1170 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1170 AvailabilityThis GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200501-02.xml Concerns?Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. LicenseCopyright 2004 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.0 Gentoo Linux Security Advisory GLSA 200501-03
Severity: Normal SynopsisVarious vulnerabilities were found and fixed in Mozilla-based products, ranging from a potential buffer overflow and temporary files disclosure to anti-spoofing issues. BackgroundMozilla is a popular web browser that includes a mail and newsreader. Mozilla Firefox and Mozilla Thunderbird are respectively the next-generation browser and mail client from the Mozilla project. Affected packages
DescriptionMaurycy Prodeus from isec.pl found a potentially exploitable buffer overflow in the handling of NNTP URLs. Furthermore, Martin (from ptraced.net) discovered that temporary files in recent versions of Mozilla-based products were sometimes stored world-readable with predictable names. The Mozilla Team also fixed a way of spoofing filenames in Firefox's "What should Firefox do with this file" dialog boxes and a potential information leak about the existence of local filenames. ImpactA remote attacker could craft a malicious NNTP link and entice a user to click it, potentially resulting in the execution of arbitrary code with the rights of the user running the browser. A local attacker could leverage the temporary file vulnerability to read the contents of another user's attachments or downloads. A remote attacker could also design a malicious web page that would allow to spoof filenames if the user uses the "Open with..." function in Firefox, or retrieve information on the presence of specific files in the local filesystem. WorkaroundThere is no known workaround at this time. ResolutionAll Mozilla users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-www/mozilla-1.7.5"
All Mozilla binary users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-www/mozilla-bin-1.7.5"
All Firefox users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-www/mozilla-firefox-1.0"
All Firefox binary users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-www/mozilla-firefox-bin-1.0"
All Thunderbird users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=mail-client/mozilla-thunderbird-0.9"
All Thunderbird binary users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=mail-client/mozilla-thunderbird-bin-0.9"
References[ 1 ] isec.pl Advisory http://isec.pl/vulnerabilities/isec-0020-mozilla.txt [ 2 ] Martin (from ptraced.net) Advisory http://broadcast.ptraced.net/advisories/008-firefox.thunderbird.txt [ 3 ] Secunia Advisory SA13144 http://secunia.com/advisories/13144/ AvailabilityThis GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200501-03.xml Concerns?Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. LicenseCopyright 2004 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.0 Gentoo Linux Security Advisory GLSA 200501-04
Severity: Normal SynopsisShoutcast Server contains a possible buffer overflow that could lead to the execution of arbitrary code. BackgroundShoutcast Server is Nullsoft's streaming audio server. It runs on a variety of platforms, including Linux, and is extremely popular with Internet broadcasters. Affected packages
DescriptionPart of the Shoutcast Server Linux binary has been found to improperly handle sprintf() parsing. ImpactA malicious attacker could send a formatted URL request to the Shoutcast Server. This formatted URL would cause either the server process to crash, or the execution of arbitrary code. WorkaroundThere is no known workaround at this time. ResolutionAll Shoutcast Server users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=media-sound/shoutcast-server-bin-1.9.5"
References[ 1 ] BugTraq Announcement http://www.securityfocus.com/archive/1/385350 AvailabilityThis GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200501-04.xml Concerns?Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. LicenseCopyright 2004 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.0 Debian GNU/Linux
Debian Security Advisory DSA 625-1 security@debian.org
Package : pcal Danny Lungstrom discovered two buffer overflows in pcal, a program to generate Postscript calendars, that could lead to the execution of arbitrary code when compiling a calendar. For the stable distribution (woody) these problems have been fixed in version 4.7-8woody1. For the unstable distribution (sid) these problems have been fixed in version 4.8.0-1. We recommend that you upgrade your pcal package. Upgrade Instructions wget url
will fetch the file for you will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.0 alias woody Source archives:
http://security.debian.org/pool/updates/main/p/pcal/pcal_4.7-8woody1.dsc Alpha architecture:
http://security.debian.org/pool/updates/main/p/pcal/pcal_4.7-8woody1_alpha.deb ARM architecture:
http://security.debian.org/pool/updates/main/p/pcal/pcal_4.7-8woody1_arm.deb Intel IA-32 architecture:
http://security.debian.org/pool/updates/main/p/pcal/pcal_4.7-8woody1_i386.deb Intel IA-64 architecture:
http://security.debian.org/pool/updates/main/p/pcal/pcal_4.7-8woody1_ia64.deb HP Precision architecture:
http://security.debian.org/pool/updates/main/p/pcal/pcal_4.7-8woody1_hppa.deb Motorola 680x0 architecture:
http://security.debian.org/pool/updates/main/p/pcal/pcal_4.7-8woody1_m68k.deb Big endian MIPS architecture:
http://security.debian.org/pool/updates/main/p/pcal/pcal_4.7-8woody1_mips.deb Little endian MIPS architecture:
http://security.debian.org/pool/updates/main/p/pcal/pcal_4.7-8woody1_mipsel.deb PowerPC architecture:
http://security.debian.org/pool/updates/main/p/pcal/pcal_4.7-8woody1_powerpc.deb IBM S/390 architecture:
http://security.debian.org/pool/updates/main/p/pcal/pcal_4.7-8woody1_s390.deb Sun Sparc architecture:
http://security.debian.org/pool/updates/main/p/pcal/pcal_4.7-8woody1_sparc.deb These files will probably be moved into the stable distribution on its next update.
Debian Security Advisory DSA 624-1 security@debian.org
Package : zip A buffer overflow has been discovered in zip, the archiver for .zip files. When doing recursive folder compression the program did not check the resulting path length, which would lead to memory being overwritten. A malicious person could convince a user to create an archive containing a specially crafted path name, which could lead to the execution of arbitrary code. For the stable distribution (woody) this problem has been fixed in version 2.30-5woody2. For the unstable distribution (sid) this problem has been fixed in version 2.30-8. We recommend that you upgrade your zip package. Upgrade Instructions wget url
will fetch the file for you will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.0 alias woody Source archives:
http://security.debian.org/pool/updates/main/z/zip/zip_2.30-5woody2.dsc Alpha architecture:
http://security.debian.org/pool/updates/main/z/zip/zip_2.30-5woody2_alpha.deb ARM architecture:
http://security.debian.org/pool/updates/main/z/zip/zip_2.30-5woody2_arm.deb Intel IA-32 architecture:
http://security.debian.org/pool/updates/main/z/zip/zip_2.30-5woody2_i386.deb Intel IA-64 architecture:
http://security.debian.org/pool/updates/main/z/zip/zip_2.30-5woody2_ia64.deb HP Precision architecture:
http://security.debian.org/pool/updates/main/z/zip/zip_2.30-5woody2_hppa.deb Motorola 680x0 architecture:
http://security.debian.org/pool/updates/main/z/zip/zip_2.30-5woody2_m68k.deb Big endian MIPS architecture:
http://security.debian.org/pool/updates/main/z/zip/zip_2.30-5woody2_mips.deb Little endian MIPS architecture:
http://security.debian.org/pool/updates/main/z/zip/zip_2.30-5woody2_mipsel.deb PowerPC architecture:
http://security.debian.org/pool/updates/main/z/zip/zip_2.30-5woody2_powerpc.deb IBM S/390 architecture:
http://security.debian.org/pool/updates/main/z/zip/zip_2.30-5woody2_s390.deb Sun Sparc architecture:
http://security.debian.org/pool/updates/main/z/zip/zip_2.30-5woody2_sparc.deb These files will probably be moved into the stable distribution on its next update. For apt-get: deb http://security.debian.org/ stable/updates mainbr> For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/mainbr> Mailing list: debian-security-announce@lists.debian.orgbr> Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>  
|
 |
|
|
|
|
| All times are recorded in UTC. Linux is a trademark of Linus Torvalds. Powered by Linux, Apache and PHP |
