|
 |
Gentoo LinuxGentoo Linux Security Advisory GLSA 200505-05
Severity: Normal Synopsisgzip contains multiple vulnerabilities potentially allowing an attacker to execute arbitrary commands. Backgroundgzip (GNU zip) is a popular compression program. The included zgrep utility allows you to grep gzipped files in place. Affected packages
DescriptionThe gzip and gunzip programs are vulnerable to a race condition when setting file permissions (CAN-2005-0988), as well as improper handling of filename restoration (CAN-2005-1228). The zgrep utility improperly sanitizes arguments, which may come from an untrusted source (CAN-2005-0758). ImpactThese vulnerabilities could allow arbitrary command execution, changing the permissions of arbitrary files, and installation of files to an aribitrary location in the filesystem. WorkaroundThere is no known workaround at this time. ResolutionAll gzip users should upgrade to the latest stable version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-arch/gzip-1.3.5-r6"
References[ 1 ] CAN-2005-0758 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0758 [ 2 ] CAN-2005-0988 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0988 [ 3 ] CAN-2005-1228 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1228 AvailabilityThis GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200505-05.xml Concerns?Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. LicenseCopyright 2005 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.0 Gentoo Linux Security Advisory GLSA 200505-06
Severity: Normal SynopsisA flaw in the decoding of network packets renders TCPDump vulnerable to a remote Denial of Service attack. BackgroundTCPDump is a tool for network monitoring and data acquisition. Affected packages
DescriptionTCPDump improperly handles and decodes ISIS, BGP, LDP (CAN-2005-1279) and RSVP (CAN-2005-1280) packets. TCPDump might loop endlessly after receiving malformed packets. ImpactA malicious remote attacker can exploit the decoding issues for a Denial of Service attack by sending specially crafted packets, possibly causing TCPDump to loop endlessly. WorkaroundThere is no known workaround at this time. ResolutionAll TCPDump users should upgrade to the latest available version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-analyzer/tcpdump-3.8.3-r2"
References[ 1 ] CAN-2005-1279 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2005-1279 [ 2 ] CAN-2005-1280 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2005-1280 AvailabilityThis GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200505-06.xml Concerns?Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. LicenseCopyright 2005 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.0 Gentoo Linux Security Advisory GLSA 200505-07
Severity: Normal SynopsisThe libTIFF library is vulnerable to a buffer overflow, potentially resulting in the execution of arbitrary code. BackgroundlibTIFF provides support for reading and manipulating TIFF (Tag Image File Format) images. Affected packages
DescriptionTavis Ormandy of the Gentoo Linux Security Audit Team discovered a stack based buffer overflow in the libTIFF library when reading a TIFF image with a malformed BitsPerSample tag. ImpactSuccessful exploitation would require the victim to open a specially crafted TIFF image, resulting in the execution of arbitrary code. WorkaroundThere is no known workaround at this time. ResolutionAll libTIFF users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=media-libs/tiff-3.7.2"
References[ 1 ] LIBTIFF BUG#863 http://bugzilla.remotesensing.org/show_bug.cgi?id=843 AvailabilityThis GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200505-07.xml Concerns?Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. LicenseCopyright 2005 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.0 Gentoo Linux Security Advisory GLSA 200505-08
Severity: Normal SynopsisTwo vulnerabilities have been discovered in HT Editor, potentially leading to the execution of arbitrary code. BackgroundHT is a hex editor, designed to help analyse and modify executable files. Affected packages
DescriptionTavis Ormandy of the Gentoo Linux Security Team discovered an integer overflow in the ELF parser, leading to a heap-based buffer overflow. The vendor has reported that an unrelated buffer overflow has been discovered in the PE parser. ImpactSuccessful exploitation would require the victim to open a specially crafted file using HT, potentially permitting an attacker to execute arbitrary code. WorkaroundThere is no known workaround at this time. ResolutionAll hteditor users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-editors/hteditor-0.8.0-r2"
AvailabilityThis GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200505-08.xml Concerns?Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. LicenseCopyright 2005 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.0 Trustix Secure LinuxTrustix Secure Linux Security Advisory #2005-0021
Package name: squid Package description: Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests.
Problem description: The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the name CAN-2005-1345 to this issue.
Action:
Location:
About Trustix Secure Linux:
Automatic updates:
Questions?
Verification:
The advisory itself is available from the errata pages at MD5sums of the packages: e6d0c594be0a5394aff4ecae415d87f4 2.2/rpms/squid-2.5.STABLE9-5tr.i586.rpm 70ac69e23c26b3f0cc86b2dade9ba3be 2.1/rpms/squid-2.5.STABLE9-1tr.i586.rpm Trustix Security Team  
|
 |
|
|
|
|
| All times are recorded in UTC. Linux is a trademark of Linus Torvalds. Powered by Linux, Apache and PHP |
