|
|
| Top White Papers
Current Newswire:
Advisories, February 10, 2006Feb 11, 2006, 05:00 (0 Talkback[s])Debian GNU/LinuxDebian Security Advisory DSA 967-1 security@debian.org Package : elog Several security problems have been found in elog, an electonic logbook to manage notes. The Common Vulnerabilities and Exposures Project identifies the following problems: CVE-2005-4439 "GroundZero Security" discovered that elog insufficiently checks the size of a buffer used for processing URL parameters, which might lead to the execution of arbitrary code. CVE-2006-0347 It was discovered that elog contains a directory traveral vulnerability in the processing of "../" sequences in URLs, which might lead to information disclosure. CVE-2006-0348 The code to write the log file contained a format string vulnerability, which might lead to the execution of arbitrary code. CVE-2006-0597 Overly long revision attributes might trigger a crash due to a buffer overflow. CVE-2006-0598 The code to write the log file does not enforce bounds checks properly, which might lead to the execution of arbitrary code. CVE-2006-0599 elog emitted different errors messages for invalid passwords and invalid users, which allows an attacker to probe for valid user names. CVE-2006-0600 An attacker could be driven into infinite redirection with a crafted "fail" request, which has denial of service potential. The old stable distribution (woody) does not contain elog packages. For the stable distribution (sarge) these problems have been fixed in version 2.5.7+r1558-4+sarge2. For the unstable distribution (sid) these problems have been fixed in version 2.6.1+r1642-1. We recommend that you upgrade your elog package. Upgrade Instructions wget url will fetch the file for you will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge Source archives: http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge2.dsc Alpha architecture: http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge2_alpha.deb AMD64 architecture: http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge2_amd64.deb ARM architecture: http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge2_arm.deb Intel IA-32 architecture: http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge2_i386.deb Intel IA-64 architecture: http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge2_ia64.deb HP Precision architecture: http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge2_hppa.deb Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge2_m68k.deb Big endian MIPS architecture: http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge2_mips.deb Little endian MIPS architecture: http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge2_mipsel.deb PowerPC architecture: http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge2_powerpc.deb IBM S/390 architecture: http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge2_s390.deb Sun Sparc architecture: http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge2_sparc.deb These files will probably be moved into the stable distribution on its next update. For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce@lists.debian.org Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg> Fedora CoreFedora Update Notification FEDORA-2006-103 2006-02-10 Product : Fedora Core 4 Description : Update Information: Heap-based buffer overflow in Splash.cc in poppler, allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed the width or height of the associated bitmap.
This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/ a6389ee0a029cd9d00554e895379b58141be1e9d
SRPMS/poppler-0.4.5-1.1.src.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at http://fedora.redhat.com/docs/yum/. Fedora Update Notification FEDORA-2006-104 2006-02-10 Product : Fedora Core 4 Description : Update Information: xpdf contains a heap based buffer overflow in the splash rasterizer engine that can crash kpdf or even execute arbitrary code. Users impacted by these issues, should update to this new package release.
This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/ aea6ed92fb72a3f6674e77f6d973d6227a174385
SRPMS/xpdf-3.01-0.FC4.8.src.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at http://fedora.redhat.com/docs/yum/. Fedora Update Notification FEDORA-2006-105 2006-02-10 Product : Fedora Core 4 Description : Includes: Update Information: kpdf, the KDE pdf viewer, shares code with xpdf. xpdf contains a heap based buffer overflow in the splash rasterizer engine that can crash kpdf or even execute arbitrary code. Users impacted by these issues, should update to this new package release.
This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/ 4ed4ed8ca7762a7140b4aea37862078bc3758988
SRPMS/kdegraphics-3.5.1-0.2.fc4.src.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at http://fedora.redhat.com/docs/yum/. Mandriva LinuxMandriva Linux Advisory MDKA-2006:018 Package : ghostscript Problem Description: A number of bugs have been corrected with this latest ghostscript package including a fix when rendering imaged when converting PostScript to PDF with ps2pdf, a crash when generating PDF files with the pdfwrite device, several segfaults, a fix for vertical japanese text, and a number of other fixes. Updated Packages: Mandriva Linux 2006.0: Mandriva Linux 2006.0/X86_64: To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com Type Bits/KeyID Date User ID Red Hat LinuxRed Hat Security Advisory Synopsis: Important: gnutls security update 1. Summary: Updated gnutls packages that fix a security issue are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390,
s390x, x86_64 3. Problem description: The GNU TLS Library provides support for cryptographic algorithms and protocols such as TLS. GNU TLS includes Libtasn1, a library developed for ASN.1 structures management that includes DER encoding and decoding. Several flaws were found in the way libtasn1 decodes DER. An attacker could create a carefully crafted invalid X.509 certificate in such a way that could trigger this flaw if parsed by an application that uses GNU TLS. This could lead to a denial of service (application crash). It is not certain if this issue could be escalated to allow arbitrary code execution. The Common Vulnerabilities and Exposures project assigned the name CVE-2006-0645 to this issue. In Red Hat Enterprise Linux 4, the GNU TLS library is only used by the Evolution client when connecting to an Exchange server or when publishing calendar information to a WebDAV server. Users are advised to upgrade to these updated packages, which contain a backported patch from the GNU TLS maintainers to correct this issue. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. 5. Bug IDs fixed (http://bugzilla.redhat.com/): 180903 - CVE-2006-0645 GnuTLS x509 DER DoS 6. RPMs required: Red Hat Enterprise Linux AS version 4: SRPMS: i386: ia64: ppc: s390: s390x: x86_64: Red Hat Enterprise Linux Desktop version 4: SRPMS: i386: x86_64: Red Hat Enterprise Linux ES version 4: SRPMS: i386: ia64: x86_64: Red Hat Enterprise Linux WS version 4: SRPMS: i386: ia64: x86_64: These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package 7. References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0645 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/ Copyright 2006 Red Hat, Inc.
0 Talkback[s]
(click to add your comment)
|
