Linux Today - Advisories, July 12, 2006

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices

Technology Jobs

LinuxToday Newsletters

Server Daily
IT Management Daily
Subscribe News
Subscribe PR
Subscribe Security

internet.com

Internet News
Small Business

Advertise
Newsletters
Tech Jobs
E-mail Offers

Current Newswire:

Raspberry Pi benchmarked against Beagleboard, low price is long term

20 popular Ubuntu Linux apps you may want to try

A Selection of the Very Best Open Source Tutorials and Tools

Android Ice Cream Sandwich ported to x86 tablets, netbooks and notebooks

SECURITY: Google Chrome 17 Improves Security

How to read a CSV file in Perl?

Red Hat Brings Gluster to Amazon Cloud

New Linux kernel fixes power-saving issues

Using Wii remote with Android Device- Taking Gaming to the Next Level

Commercial Support now available for the open-source NGINX Web server

Applications Management Engineer Sr (NYC)
Next Step Systems
US-NY-New York

Post A Job | Post A Resume

:Advisories, July 12, 2006

Advisories, July 12, 2006
Jul 13, 2006, 04 :45 UTC (0 Talkback[s]) (3341 reads)

Mandriva Linux

Mandriva Linux Security Advisory MDKSA-2006:117-1
http://www.mandriva.com/security/

Package : libmms
Date : July 12, 2006
Affected: 2006.0

Problem Description:

Stack-based buffer overflow in MiMMS 0.0.9 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via the (1) send_command, (2) string_utf16, (3) get_data, and (4) get_media_packet functions, and possibly other functions. Libmms uses the same vulnerable code.

Update:

The previous update for libmms had an incorrect/incomplete patch. This update includes a more complete fix for the issue.

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2200

Updated Packages:

Mandriva Linux 2006.0:
e9fd0a2b5764917cfaf2e9bf45af2e5d 2006.0/RPMS/libmms0-0.1-1.2.20060mdk.i586.rpm
b556179bdc4842b0cc923346494dadce 2006.0/RPMS/libmms0-devel-0.1-1.2.20060mdk.i586.rpm
a539ad416a9f9b1252fa12e5b2c29b60 2006.0/SRPMS/libmms-0.1-1.2.20060mdk.src.rpm

Mandriva Linux 2006.0/X86_64:
2a16fb87e7c00d2246f5f0716d6451eb x86_64/2006.0/RPMS/lib64mms0-0.1-1.2.20060mdk.x86_64.rpm
b2775f1f51106cfdb390627a455c3c28 x86_64/2006.0/RPMS/lib64mms0-devel-0.1-1.2.20060mdk.x86_64.rpm
a539ad416a9f9b1252fa12e5b2c29b60 x86_64/2006.0/SRPMS/libmms-0.1-1.2.20060mdk.src.rpm

To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com>

Mandriva Linux Security Advisory MDKSA-2006:121
http://www.mandriva.com/security/

Package : xine-lib
Date : July 12, 2006
Affected: 2006.0, Corporate 3.0

Problem Description:

The updated packages have been patched to correct this issue.

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2200

Updated Packages:

Mandriva Linux 2006.0:
34c23d8a858d2a2687297e25618c7b04 2006.0/RPMS/libxine1-1.1.0-9.6.20060mdk.i586.rpm
57f9a069b8fc968a12ce24605390c1f1 2006.0/RPMS/libxine1-devel-1.1.0-9.6.20060mdk.i586.rpm
7c2652ce586d087793536649d7da6966 2006.0/RPMS/xine-aa-1.1.0-9.6.20060mdk.i586.rpm
37eff9bda8595acfbaf80e0998db1c9e 2006.0/RPMS/xine-arts-1.1.0-9.6.20060mdk.i586.rpm
e5672e6558978051f6878dea6ba961b5 2006.0/RPMS/xine-dxr3-1.1.0-9.6.20060mdk.i586.rpm
6527706516fb99a53f82d2c8c4b2e5f8 2006.0/RPMS/xine-esd-1.1.0-9.6.20060mdk.i586.rpm
10d172825fdd5dd2dd92dfafd5d60e23 2006.0/RPMS/xine-flac-1.1.0-9.6.20060mdk.i586.rpm
87b9a38b877b67f0ac0ee4f58ed50983 2006.0/RPMS/xine-gnomevfs-1.1.0-9.6.20060mdk.i586.rpm
8656ea92b3fca51e2fad861ea963b14d 2006.0/RPMS/xine-image-1.1.0-9.6.20060mdk.i586.rpm
6a538ee35d785dfc7ea64a03c20060da 2006.0/RPMS/xine-plugins-1.1.0-9.6.20060mdk.i586.rpm
9defa64950f2feebab9dda16d35523cb 2006.0/RPMS/xine-polyp-1.1.0-9.6.20060mdk.i586.rpm
d207307cb338b46edd703797b693ea24 2006.0/RPMS/xine-smb-1.1.0-9.6.20060mdk.i586.rpm
4dc1623162c6092eb10c755ed2c5366a 2006.0/SRPMS/xine-lib-1.1.0-9.6.20060mdk.src.rpm

Mandriva Linux 2006.0/X86_64:
8798915891b79ac134565f8ede0653b1 x86_64/2006.0/RPMS/lib64xine1-1.1.0-9.6.20060mdk.x86_64.rpm
dcd2eb828f921b04206124835eeada8e x86_64/2006.0/RPMS/lib64xine1-devel-1.1.0-9.6.20060mdk.x86_64.rpm
a933644c1c56d642a5d576cb217d0356 x86_64/2006.0/RPMS/xine-aa-1.1.0-9.6.20060mdk.x86_64.rpm
238d8526e618dff3aa31e223c14ce432 x86_64/2006.0/RPMS/xine-arts-1.1.0-9.6.20060mdk.x86_64.rpm
d9f0269ae701936ce27b6515e5c73ac1 x86_64/2006.0/RPMS/xine-dxr3-1.1.0-9.6.20060mdk.x86_64.rpm
4683507048ec6535c2c5f63997ec719d x86_64/2006.0/RPMS/xine-esd-1.1.0-9.6.20060mdk.x86_64.rpm
bc649ad82f11c8422f1e9fb711dd4803 x86_64/2006.0/RPMS/xine-flac-1.1.0-9.6.20060mdk.x86_64.rpm
52fe1d4ddeeea6ec91a776ccacf5df19 x86_64/2006.0/RPMS/xine-gnomevfs-1.1.0-9.6.20060mdk.x86_64.rpm
348cc9ecf59e378b3d1c6aa12a35f9b9 x86_64/2006.0/RPMS/xine-image-1.1.0-9.6.20060mdk.x86_64.rpm
d2f2300e0bd4e4e210bbfae485c07624 x86_64/2006.0/RPMS/xine-plugins-1.1.0-9.6.20060mdk.x86_64.rpm
afca19bc708fc5964c19fff3a2d16286 x86_64/2006.0/RPMS/xine-polyp-1.1.0-9.6.20060mdk.x86_64.rpm
ba7c60488a4459066ba4ed08046ce48c x86_64/2006.0/RPMS/xine-smb-1.1.0-9.6.20060mdk.x86_64.rpm
4dc1623162c6092eb10c755ed2c5366a x86_64/2006.0/SRPMS/xine-lib-1.1.0-9.6.20060mdk.src.rpm

Corporate 3.0:
1390c15ca893041af1076e6a02d14f47 corporate/3.0/RPMS/libxine1-1-0.rc3.6.12.C30mdk.i586.rpm
ecc53b859629edd48ef27b477332889e corporate/3.0/RPMS/libxine1-devel-1-0.rc3.6.12.C30mdk.i586.rpm
a4d85795d05266793fa61ba6bc986aa6 corporate/3.0/RPMS/xine-aa-1-0.rc3.6.12.C30mdk.i586.rpm
4dd4249d6b1911501ddcfa1ef36470af corporate/3.0/RPMS/xine-arts-1-0.rc3.6.12.C30mdk.i586.rpm
c9a3f82dad17f32a6ab6c0b1926c52c1 corporate/3.0/RPMS/xine-dxr3-1-0.rc3.6.12.C30mdk.i586.rpm
c40b65dd7cde826b8bfa5fb5720d15ed corporate/3.0/RPMS/xine-esd-1-0.rc3.6.12.C30mdk.i586.rpm
2a257f092fe4b304be7e358230aa0361 corporate/3.0/RPMS/xine-flac-1-0.rc3.6.12.C30mdk.i586.rpm
b04b482c8693272f7ead71ac3ce91e7f corporate/3.0/RPMS/xine-gnomevfs-1-0.rc3.6.12.C30mdk.i586.rpm
ae63549d198004056aacacee5b2ccbef corporate/3.0/RPMS/xine-plugins-1-0.rc3.6.12.C30mdk.i586.rpm
d8fe8f9dff1190413e81e82e67762462 corporate/3.0/SRPMS/xine-lib-1-0.rc3.6.12.C30mdk.src.rpm

Corporate 3.0/X86_64:
aad2ac9345e05d900910b8beade5ff21 x86_64/corporate/3.0/RPMS/lib64xine1-1-0.rc3.6.12.C30mdk.x86_64.rpm
b9540819f0250a2924297ce0388f6202 x86_64/corporate/3.0/RPMS/lib64xine1-devel-1-0.rc3.6.12.C30mdk.x86_64.rpm
53cc9dc911be64bf8764d76262df4a44 x86_64/corporate/3.0/RPMS/xine-aa-1-0.rc3.6.12.C30mdk.x86_64.rpm
280b7a7ceb168225d30eb97e95f45fb6 x86_64/corporate/3.0/RPMS/xine-arts-1-0.rc3.6.12.C30mdk.x86_64.rpm
4e3811096df50e37e6b10f3eedafb0be x86_64/corporate/3.0/RPMS/xine-esd-1-0.rc3.6.12.C30mdk.x86_64.rpm
e1e703b0f81edc6399225c6652049519 x86_64/corporate/3.0/RPMS/xine-flac-1-0.rc3.6.12.C30mdk.x86_64.rpm
14ce60de521e86ae7755c74a3c845d73 x86_64/corporate/3.0/RPMS/xine-gnomevfs-1-0.rc3.6.12.C30mdk.x86_64.rpm
f95f6a3222ef533ea13637cd8d9ff737 x86_64/corporate/3.0/RPMS/xine-plugins-1-0.rc3.6.12.C30mdk.x86_64.rpm
d8fe8f9dff1190413e81e82e67762462 x86_64/corporate/3.0/SRPMS/xine-lib-1-0.rc3.6.12.C30mdk.src.rpm

To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com>

Red Hat Linux

Red Hat Security Advisory

Synopsis: Important: vixie-cron security update
Advisory ID: RHSA-2006:0539-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2006-0539.html
Issue date: 2006-07-12
Updated on: 2006-07-12
Product: Red Hat Enterprise Linux
CVE Names: CVE-2006-2607

1. Summary:

Updated vixie-cron packages that fix a privilege escalation issue are now available.

This update has been rated as having important security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Problem description:

The vixie-cron package contains the Vixie version of cron. Cron is a standard UNIX daemon that runs specified programs at scheduled times.

A privilege escalation flaw was found in the way Vixie Cron runs programs; vixie-cron does not properly verify an attempt to set the current process user id succeeded. It was possible for a malicious local users who exhausted certain limits to execute arbitrary commands as root via cron. (CVE-2006-2607)

All users of vixie-cron should upgrade to these updated packages, which contain a backported patch to correct this issue.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

193146 - CVE-2006-2607 Jobs start from root when pam_limits enabled

6. RPMs required:

Red Hat Enterprise Linux AS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/vixie-cron-4.1-44.EL4.src.rpm
84ffd65a8877af47400a731ecd1b9ee3 vixie-cron-4.1-44.EL4.src.rpm

i386:
96f8e56c7683001feb3f3af160e5d3bc vixie-cron-4.1-44.EL4.i386.rpm
2537c3d0066bfba10e271466e848abfa vixie-cron-debuginfo-4.1-44.EL4.i386.rpm

ia64:
a8d8d2c094a1d9aa1e8b565633f63491 vixie-cron-4.1-44.EL4.ia64.rpm
fbd4dd6bda2c2b4ed0b76b9decc45da8 vixie-cron-debuginfo-4.1-44.EL4.ia64.rpm

ppc:
abbfe3611ef001871714d508cb12ee78 vixie-cron-4.1-44.EL4.ppc.rpm
cfff4b167fa6cf2f1c093c9d990fea1d vixie-cron-debuginfo-4.1-44.EL4.ppc.rpm

s390:
13a5b37c0c9c360055a75c3b779603c9 vixie-cron-4.1-44.EL4.s390.rpm
5eddcab5c828098a1fd2e4cdd1c1ddc1 vixie-cron-debuginfo-4.1-44.EL4.s390.rpm

s390x:
869131c337de109964f8acb2e720ee33 vixie-cron-4.1-44.EL4.s390x.rpm
32da5254a3b569a351557547fc872556 vixie-cron-debuginfo-4.1-44.EL4.s390x.rpm

x86_64:
3d045241d3453e8bc5a6bc260320fbc9 vixie-cron-4.1-44.EL4.x86_64.rpm
2d30b0141ee8e242602fa70f03982713 vixie-cron-debuginfo-4.1-44.EL4.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/vixie-cron-4.1-44.EL4.src.rpm
84ffd65a8877af47400a731ecd1b9ee3 vixie-cron-4.1-44.EL4.src.rpm

i386:
96f8e56c7683001feb3f3af160e5d3bc vixie-cron-4.1-44.EL4.i386.rpm
2537c3d0066bfba10e271466e848abfa vixie-cron-debuginfo-4.1-44.EL4.i386.rpm

x86_64:
3d045241d3453e8bc5a6bc260320fbc9 vixie-cron-4.1-44.EL4.x86_64.rpm
2d30b0141ee8e242602fa70f03982713 vixie-cron-debuginfo-4.1-44.EL4.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/vixie-cron-4.1-44.EL4.src.rpm
84ffd65a8877af47400a731ecd1b9ee3 vixie-cron-4.1-44.EL4.src.rpm

i386:
96f8e56c7683001feb3f3af160e5d3bc vixie-cron-4.1-44.EL4.i386.rpm
2537c3d0066bfba10e271466e848abfa vixie-cron-debuginfo-4.1-44.EL4.i386.rpm

ia64:
a8d8d2c094a1d9aa1e8b565633f63491 vixie-cron-4.1-44.EL4.ia64.rpm
fbd4dd6bda2c2b4ed0b76b9decc45da8 vixie-cron-debuginfo-4.1-44.EL4.ia64.rpm

x86_64:
3d045241d3453e8bc5a6bc260320fbc9 vixie-cron-4.1-44.EL4.x86_64.rpm
2d30b0141ee8e242602fa70f03982713 vixie-cron-debuginfo-4.1-44.EL4.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/vixie-cron-4.1-44.EL4.src.rpm
84ffd65a8877af47400a731ecd1b9ee3 vixie-cron-4.1-44.EL4.src.rpm

i386:
96f8e56c7683001feb3f3af160e5d3bc vixie-cron-4.1-44.EL4.i386.rpm
2537c3d0066bfba10e271466e848abfa vixie-cron-debuginfo-4.1-44.EL4.i386.rpm

ia64:
a8d8d2c094a1d9aa1e8b565633f63491 vixie-cron-4.1-44.EL4.ia64.rpm
fbd4dd6bda2c2b4ed0b76b9decc45da8 vixie-cron-debuginfo-4.1-44.EL4.ia64.rpm

x86_64:
3d045241d3453e8bc5a6bc260320fbc9 vixie-cron-4.1-44.EL4.x86_64.rpm
2d30b0141ee8e242602fa70f03982713 vixie-cron-debuginfo-4.1-44.EL4.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

7. References:

http://www.redhat.com/security/updates/classification/#important
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2607

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/

Red Hat Security Advisory

Synopsis: Moderate: php security update
Advisory ID: RHSA-2006:0568-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2006-0568.html
Issue date: 2006-07-12
Updated on: 2006-07-12
Product: Red Hat Enterprise Linux
CVE Names: CVE-2006-1494 CVE-2006-1990 CVE-2006-3017

1. Summary:

Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 and 4.

This update has been rated as having moderate security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Problem description:

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server.

A directory traversal vulnerability was found in PHP. Local users could bypass open_basedir restrictions allowing remote attackers to create files in arbitrary directories via the tempnam() function. (CVE-2006-1494)

The wordwrap() PHP function did not properly check for integer overflow in the handling of the "break" parameter. An attacker who could control the string passed to the "break" parameter could cause a heap overflow. (CVE-2006-1990)

A flaw was found in the zend_hash_del() PHP function. For PHP scripts that rely on the use of the unset() function, a remote attacker could force variable initialization to be bypassed. This would be a security issue particularly for installations that enable the "register_globals" setting. "register_globals" is disabled by default in Red Hat Enterprise Linux. (CVE-2006-3017)

Users of PHP should upgrade to these updated packages, which contain backported patches that resolve these issues.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

189591 - CVE-2006-1494 PHP tempname open_basedir issue
190033 - CVE-2006-1990 wordwrap integer overflow
196256 - CVE-2006-3017 zend_hash_del bug

6. RPMs required:

Red Hat Enterprise Linux AS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/php-4.3.2-33.ent.src.rpm
c018cc410c9655f537bbc617ec67ba11 php-4.3.2-33.ent.src.rpm

ppc:
35582367f1958335fe2d13585460e6e1 php-4.3.2-33.ent.ppc.rpm
ca1a7b0361440c2157e29331fe6f7f20 php-debuginfo-4.3.2-33.ent.ppc.rpm
a24707e275c345129babbd9c734dc848 php-devel-4.3.2-33.ent.ppc.rpm
113ff33af6db3fc10ceaf94f598ef858 php-imap-4.3.2-33.ent.ppc.rpm
f69c5b8debe3ee9bbd49bc6763f562b9 php-ldap-4.3.2-33.ent.ppc.rpm
d7839788a852cc6a0237aed3b94f64af php-mysql-4.3.2-33.ent.ppc.rpm
a62fbd02a3642f3bbbc4df9f970bd6af php-odbc-4.3.2-33.ent.ppc.rpm
a8efdd969dc9b1b5ddc2b4fbe6b205a0 php-pgsql-4.3.2-33.ent.ppc.rpm

Red Hat Desktop version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/php-4.3.2-33.ent.src.rpm
c018cc410c9655f537bbc617ec67ba11 php-4.3.2-33.ent.src.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/php-4.3.2-33.ent.src.rpm
c018cc410c9655f537bbc617ec67ba11 php-4.3.2-33.ent.src.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/php-4.3.2-33.ent.src.rpm
c018cc410c9655f537bbc617ec67ba11 php-4.3.2-33.ent.src.rpm

Red Hat Enterprise Linux AS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/php-4.3.9-3.15.src.rpm
8e7fcb8213f940460bed98ea4845b008 php-4.3.9-3.15.src.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/php-4.3.9-3.15.src.rpm
8e7fcb8213f940460bed98ea4845b008 php-4.3.9-3.15.src.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/php-4.3.9-3.15.src.rpm
8e7fcb8213f940460bed98ea4845b008 php-4.3.9-3.15.src.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/php-4.3.9-3.15.src.rpm
8e7fcb8213f940460bed98ea4845b008 php-4.3.9-3.15.src.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

7. References:

http://www.php.net/register_globals
http://www.redhat.com/security/updates/classification/#moderate
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1494
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1990
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3017

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/

Red Hat Security Advisory

Synopsis: Moderate: mutt security update
Advisory ID: RHSA-2006:0577-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2006-0577.html
Issue date: 2006-07-12
Updated on: 2006-07-12
Product: Red Hat Enterprise Linux
CVE Names: CVE-2006-3242

1. Summary:

Updated mutt packages that fix a security issue are now available.

This update has been rated as having moderate security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Problem description:

Mutt is a text-mode mail user agent.

A buffer overflow flaw was found in the way Mutt processes an overly long namespace from a malicious imap server. In order to exploit this flaw a user would have to use Mutt to connect to a malicious IMAP server. (CVE-2006-3242)

Users of Mutt are advised to upgrade to these erratum packages, which contain a backported patch to correct this issue.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

197151 - CVE-2006-3242 Mutt IMAP namespace buffer overflow

6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/mutt-1.2.5.1-2.rhel21.src.rpm
54b1c502dcc5da91b83593a29e689cda mutt-1.2.5.1-2.rhel21.src.rpm

i386:
7c33167f6a99327ea66a7d21158a3759 mutt-1.2.5.1-2.rhel21.i386.rpm

ia64:
4f6bb6963b32b2cd7394fa6311251732 mutt-1.2.5.1-2.rhel21.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1AW/en/os/SRPMS/mutt-1.2.5.1-2.rhel21.src.rpm
54b1c502dcc5da91b83593a29e689cda mutt-1.2.5.1-2.rhel21.src.rpm

ia64:
4f6bb6963b32b2cd7394fa6311251732 mutt-1.2.5.1-2.rhel21.ia64.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1ES/en/os/SRPMS/mutt-1.2.5.1-2.rhel21.src.rpm
54b1c502dcc5da91b83593a29e689cda mutt-1.2.5.1-2.rhel21.src.rpm

i386:
7c33167f6a99327ea66a7d21158a3759 mutt-1.2.5.1-2.rhel21.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1WS/en/os/SRPMS/mutt-1.2.5.1-2.rhel21.src.rpm
54b1c502dcc5da91b83593a29e689cda mutt-1.2.5.1-2.rhel21.src.rpm

i386:
7c33167f6a99327ea66a7d21158a3759 mutt-1.2.5.1-2.rhel21.i386.rpm

Red Hat Enterprise Linux AS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/mutt-1.4.1-3.5.rhel3.src.rpm
888328d8ea84f9d405cf68c1d37a4a62 mutt-1.4.1-3.5.rhel3.src.rpm

i386:
74ca0464aeb67b5f8915f796e729cc7a mutt-1.4.1-3.5.rhel3.i386.rpm
d0399d260060bbc9237ddadc4ec2c2ff mutt-debuginfo-1.4.1-3.5.rhel3.i386.rpm

ia64:
a976af2dec5ddafcc17fb3e43516a637 mutt-1.4.1-3.5.rhel3.ia64.rpm
8c8304a6f94d5259082599f039623ca6 mutt-debuginfo-1.4.1-3.5.rhel3.ia64.rpm

ppc:
5174f5edc6e767f728c481e3f80c0f4e mutt-1.4.1-3.5.rhel3.ppc.rpm
9f2ce9b3b7926b4f1a2d7d22fbe108fa mutt-debuginfo-1.4.1-3.5.rhel3.ppc.rpm

s390:
f514ef393a8a4b9e52304c365caadb32 mutt-1.4.1-3.5.rhel3.s390.rpm
2ce47567a5de01bd361a39f09f290f67 mutt-debuginfo-1.4.1-3.5.rhel3.s390.rpm

s390x:
dedb942b68b8f004959de7726e2cdab4 mutt-1.4.1-3.5.rhel3.s390x.rpm
3999e4d6b52d0f6a8b1a006675ed1668 mutt-debuginfo-1.4.1-3.5.rhel3.s390x.rpm

x86_64:
09ae329bd135464f4415383973e3fcbb mutt-1.4.1-3.5.rhel3.x86_64.rpm
30fe875c3ce277643c391a665ae5d53b mutt-debuginfo-1.4.1-3.5.rhel3.x86_64.rpm

Red Hat Desktop version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/mutt-1.4.1-3.5.rhel3.src.rpm
888328d8ea84f9d405cf68c1d37a4a62 mutt-1.4.1-3.5.rhel3.src.rpm

i386:
74ca0464aeb67b5f8915f796e729cc7a mutt-1.4.1-3.5.rhel3.i386.rpm
d0399d260060bbc9237ddadc4ec2c2ff mutt-debuginfo-1.4.1-3.5.rhel3.i386.rpm

x86_64:
09ae329bd135464f4415383973e3fcbb mutt-1.4.1-3.5.rhel3.x86_64.rpm
30fe875c3ce277643c391a665ae5d53b mutt-debuginfo-1.4.1-3.5.rhel3.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/mutt-1.4.1-3.5.rhel3.src.rpm
888328d8ea84f9d405cf68c1d37a4a62 mutt-1.4.1-3.5.rhel3.src.rpm

i386:
74ca0464aeb67b5f8915f796e729cc7a mutt-1.4.1-3.5.rhel3.i386.rpm
d0399d260060bbc9237ddadc4ec2c2ff mutt-debuginfo-1.4.1-3.5.rhel3.i386.rpm

ia64:
a976af2dec5ddafcc17fb3e43516a637 mutt-1.4.1-3.5.rhel3.ia64.rpm
8c8304a6f94d5259082599f039623ca6 mutt-debuginfo-1.4.1-3.5.rhel3.ia64.rpm

x86_64:
09ae329bd135464f4415383973e3fcbb mutt-1.4.1-3.5.rhel3.x86_64.rpm
30fe875c3ce277643c391a665ae5d53b mutt-debuginfo-1.4.1-3.5.rhel3.x86_64.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/mutt-1.4.1-3.5.rhel3.src.rpm
888328d8ea84f9d405cf68c1d37a4a62 mutt-1.4.1-3.5.rhel3.src.rpm

i386:
74ca0464aeb67b5f8915f796e729cc7a mutt-1.4.1-3.5.rhel3.i386.rpm
d0399d260060bbc9237ddadc4ec2c2ff mutt-debuginfo-1.4.1-3.5.rhel3.i386.rpm

ia64:
a976af2dec5ddafcc17fb3e43516a637 mutt-1.4.1-3.5.rhel3.ia64.rpm
8c8304a6f94d5259082599f039623ca6 mutt-debuginfo-1.4.1-3.5.rhel3.ia64.rpm

x86_64:
09ae329bd135464f4415383973e3fcbb mutt-1.4.1-3.5.rhel3.x86_64.rpm
30fe875c3ce277643c391a665ae5d53b mutt-debuginfo-1.4.1-3.5.rhel3.x86_64.rpm

Red Hat Enterprise Linux AS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/mutt-1.4.1-11.rhel4.src.rpm
ed0c14b530685c615fceb65d67fe347d mutt-1.4.1-11.rhel4.src.rpm

i386:
2865d8ea5a1c818bd25b9a55211b0558 mutt-1.4.1-11.rhel4.i386.rpm
4bfd5e8845113f9b8fce8c067dd3478a mutt-debuginfo-1.4.1-11.rhel4.i386.rpm

ia64:
ba7a3661e2c31ebc2b478e2546564721 mutt-1.4.1-11.rhel4.ia64.rpm
a5f87fd3d059fc31df95fc817e90b2bb mutt-debuginfo-1.4.1-11.rhel4.ia64.rpm

ppc:
b800a6547047140a6ae9f88427f05b97 mutt-1.4.1-11.rhel4.ppc.rpm
e8c55ad3f0e26b9371a11b30771075e1 mutt-debuginfo-1.4.1-11.rhel4.ppc.rpm

s390:
9f3b9d6494e32cc82771a0d18bd6e0d0 mutt-1.4.1-11.rhel4.s390.rpm
7b11d7354dd2c10dfe19a59518d940fb mutt-debuginfo-1.4.1-11.rhel4.s390.rpm

s390x:
ac7d20109b0d477317ac98e60bebd246 mutt-1.4.1-11.rhel4.s390x.rpm
4beef135f74e7810460dffa5c99c28a5 mutt-debuginfo-1.4.1-11.rhel4.s390x.rpm

x86_64:
3eb2b23126222c0b13fc9fa74a590a10 mutt-1.4.1-11.rhel4.x86_64.rpm
c419956864d1678397927b350f98aed8 mutt-debuginfo-1.4.1-11.rhel4.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/mutt-1.4.1-11.rhel4.src.rpm
ed0c14b530685c615fceb65d67fe347d mutt-1.4.1-11.rhel4.src.rpm

i386:
2865d8ea5a1c818bd25b9a55211b0558 mutt-1.4.1-11.rhel4.i386.rpm
4bfd5e8845113f9b8fce8c067dd3478a mutt-debuginfo-1.4.1-11.rhel4.i386.rpm

x86_64:
3eb2b23126222c0b13fc9fa74a590a10 mutt-1.4.1-11.rhel4.x86_64.rpm
c419956864d1678397927b350f98aed8 mutt-debuginfo-1.4.1-11.rhel4.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/mutt-1.4.1-11.rhel4.src.rpm
ed0c14b530685c615fceb65d67fe347d mutt-1.4.1-11.rhel4.src.rpm

i386:
2865d8ea5a1c818bd25b9a55211b0558 mutt-1.4.1-11.rhel4.i386.rpm
4bfd5e8845113f9b8fce8c067dd3478a mutt-debuginfo-1.4.1-11.rhel4.i386.rpm

ia64:
ba7a3661e2c31ebc2b478e2546564721 mutt-1.4.1-11.rhel4.ia64.rpm
a5f87fd3d059fc31df95fc817e90b2bb mutt-debuginfo-1.4.1-11.rhel4.ia64.rpm

x86_64:
3eb2b23126222c0b13fc9fa74a590a10 mutt-1.4.1-11.rhel4.x86_64.rpm
c419956864d1678397927b350f98aed8 mutt-debuginfo-1.4.1-11.rhel4.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/mutt-1.4.1-11.rhel4.src.rpm
ed0c14b530685c615fceb65d67fe347d mutt-1.4.1-11.rhel4.src.rpm

i386:
2865d8ea5a1c818bd25b9a55211b0558 mutt-1.4.1-11.rhel4.i386.rpm
4bfd5e8845113f9b8fce8c067dd3478a mutt-debuginfo-1.4.1-11.rhel4.i386.rpm

ia64:
ba7a3661e2c31ebc2b478e2546564721 mutt-1.4.1-11.rhel4.ia64.rpm
a5f87fd3d059fc31df95fc817e90b2bb mutt-debuginfo-1.4.1-11.rhel4.ia64.rpm

x86_64:
3eb2b23126222c0b13fc9fa74a590a10 mutt-1.4.1-11.rhel4.x86_64.rpm
c419956864d1678397927b350f98aed8 mutt-debuginfo-1.4.1-11.rhel4.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

7. References:

http://www.redhat.com/security/updates/classification/#moderate
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3242

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/

Ubuntu Linux

Ubuntu Security Notice USN-313-1 July 11, 2006
openoffice.org-amd64, openoffice.org vulnerabilities
CVE-2006-2198, CVE-2006-2199, CVE-2006-3117

A security issue affects the following Ubuntu releases:

Ubuntu 5.04
Ubuntu 6.06 LTS

This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the following package versions:

Ubuntu 5.04:
openoffice.org-bin 1.1.3-8ubuntu2.4

Ubuntu 6.06 LTS:

openoffice.org-base 2.0.2-2ubuntu12.1
openoffice.org-common 2.0.2-2ubuntu12.1
openoffice.org-core 2.0.2-2ubuntu12.1

In general, a standard system upgrade is sufficient to effect the necessary changes.

Ubuntu 5.10 is also affected by these flaws. Updated packages will be provided shortly.

Details follow:

It was possible to embed Basic macros in documents in a way that OpenOffice.org would not ask for confirmation about executing them. By tricking a user into opening a malicious document, this could be exploited to run arbitrary Basic code (including local file access and modification) with the user's privileges. (CVE-2006-2198)

A flaw was discovered in the Java sandbox which allowed Java applets to break out of the sandbox and execute code without restrictions. By tricking a user into opening a malicious document, this could be exploited to run arbitrary code with the user's privileges. This update disables Java applets for OpenOffice.org, since it is not generally possible to guarantee the sandbox restrictions. (CVE-2006-2199)

A buffer overflow has been found in the XML parser. By tricking a user into opening a specially crafted XML file with OpenOffice.org, this could be exploited to execute arbitrary code with the user's privileges. (CVE-2006-3117)

Updated packages for Ubuntu 5.04:

Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org-amd64/openoffice.org-amd64_1.1.3-8ubuntu2.4-1.diff.gz
      Size/MD5: 28789 514ea84d6f71ccf9db3ef260d5208659
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org-amd64/openoffice.org-amd64_1.1.3-8ubuntu2.4-1.dsc
      Size/MD5: 711 b1b158d017923995de9baa90d78af405
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org-amd64/openoffice.org-amd64_1.1.3-8ubuntu2.4.orig.tar.gz
      Size/MD5: 213206527 dc7f27c5ce697aeca39f8622e19d8b81
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org/openoffice.org_1.1.3-8ubuntu2.4.diff.gz
      Size/MD5: 6775773 452a4984ad6e9099c90e535d4b8450e0
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org/openoffice.org_1.1.3-8ubuntu2.4.dsc
      Size/MD5: 2970 fe922d379fc59ff63aa1f138bdd623d5
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org/openoffice.org_1.1.3.orig.tar.gz
      Size/MD5: 166568714 5250574bad9906b38ce032d04b765772

Architecture independent packages:

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org-amd64/openoffice.org-bin_1.1.3-8ubuntu2.4-1_amd64.deb
      Size/MD5: 41623916 eea64d786deb06b7449874958a7192a9
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org-amd64/openoffice.org-gtk-gnome_1.1.3-8ubuntu2.4-1_amd64.deb
      Size/MD5: 122924 b421afa0756d1897cc0f5cf9a974c454

i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org/openoffice.org-bin_1.1.3-8ubuntu2.4_i386.deb
      Size/MD5: 41668622 5e2ce6ca9d0c4bd401327855d1a0ef4e
    http://security.ubuntu.com/ubuntu/pool/universe/o/openoffice.org/openoffice.org-dev_1.1.3-8ubuntu2.4_i386.deb
      Size/MD5: 1862188 9718fdeb250e944c008964660bdd1a71
    http://security.ubuntu.com/ubuntu/pool/universe/o/openoffice.org/openoffice.org-evolution_1.1.3-8ubuntu2.4_i386.deb
      Size/MD5: 166942 ae8051e9bc9e490d8932d9c4c0f2969b
    http://security.ubuntu.com/ubuntu/pool/universe/o/openoffice.org/openoffice.org-gnomevfs_1.1.3-8ubuntu2.4_i386.deb
      Size/MD5: 393990 8e49f9c17616c2e0b7ead073ba3fbdad
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org/openoffice.org-gtk-gnome_1.1.3-8ubuntu2.4_i386.deb
      Size/MD5: 162540 f51c5cb6b86e590e658897d77cfecbbd
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org/openoffice.org-kde_1.1.3-8ubuntu2.4_i386.deb
      Size/MD5: 146480 2d88c8c00f84ed6ba0fd190ec397226c

powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org/openoffice.org-bin_1.1.3-8ubuntu2.4_powerpc.deb
      Size/MD5: 39933532 e5c0e78e5560ea6518d47ae845e49fd1
    http://security.ubuntu.com/ubuntu/pool/universe/o/openoffice.org/openoffice.org-dev_1.1.3-8ubuntu2.4_powerpc.deb
      Size/MD5: 1868340 b95ccc2f87796f5d1f4e620961df46a6
    http://security.ubuntu.com/ubuntu/pool/universe/o/openoffice.org/openoffice.org-evolution_1.1.3-8ubuntu2.4_powerpc.deb
      Size/MD5: 163784 99f4facd03daf98b211e6cacd7795a3c
    http://security.ubuntu.com/ubuntu/pool/universe/o/openoffice.org/openoffice.org-gnomevfs_1.1.3-8ubuntu2.4_powerpc.deb
      Size/MD5: 376704 0a7352937ff82965726e6dd48707c127
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org/openoffice.org-gtk-gnome_1.1.3-8ubuntu2.4_powerpc.deb
      Size/MD5: 160990 ba159f148f636e2654e0d77dd8a0ff4d
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org/openoffice.org-kde_1.1.3-8ubuntu2.4_powerpc.deb
      Size/MD5: 144446 3a4954442272701f4c1bab99fc27a022

Updated packages for Ubuntu 6.06 LTS:

Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org-amd64/openoffice.org-amd64_2.0.2-2ubuntu12.1-1.diff.gz
      Size/MD5: 35941 cc88050616a146cad2c75018919a4292
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org-amd64/openoffice.org-amd64_2.0.2-2ubuntu12.1-1.dsc
      Size/MD5: 1038 c1c340e11db38a3380de216c3c232eb2
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org-amd64/openoffice.org-amd64_2.0.2-2ubuntu12.1.orig.tar.gz
      Size/MD5: 330944232 cba2302c07b6543aa6f9f1bcb8fa8529
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org/openoffice.org_2.0.2-2ubuntu12.1.diff.gz
      Size/MD5: 73004797 97f2eaeb6e9947ceaf678350d5d5af5c
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org/openoffice.org_2.0.2-2ubuntu12.1.dsc
      Size/MD5: 3266 5512c271679732101f05d3bc8817dee4
    http://security.ubuntu.com/ubuntu/pool/main/o/openoffice.org/openoffice.org_2.0.2.orig.tar.gz
      Size/MD5: 206094795 b789f87aaa1f943a47a75740a73ba7cc

Architecture independent packages:

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

i386 architecture (x86 compatible Intel/AMD)

powerpc architecture (Apple Macintosh G3/G4/G5)

Ubuntu Security Notice USN-314-1 July 12, 2006
samba vulnerability
CVE-2006-3403

A security issue affects the following Ubuntu releases:

Ubuntu 5.04
Ubuntu 5.10
Ubuntu 6.06 LTS

This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the following package versions:

Ubuntu 5.04:
samba 3.0.10-1ubuntu3.1

Ubuntu 5.10:
samba 3.0.14a-6ubuntu1.1

Ubuntu 6.06 LTS:
samba 3.0.22-1ubuntu3.1

In general, a standard system upgrade is sufficient to effect the necessary changes.

Details follow:

The Samba security team reported a Denial of Service vulnerability in the handling of information about active connections. In certain circumstances an attacker could continually increase the memory usage of the smbd process by issuing a large number of share connection requests. By draining all available memory, this could be exploited to render the remote Samba server unusable.

Updated packages for Ubuntu 5.04:

Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/s/samba/samba_3.0.10-1ubuntu3.1.diff.gz
      Size/MD5: 107580 f41e99280b44e47c1e1a0c86a56c66de
    http://security.ubuntu.com/ubuntu/pool/main/s/samba/samba_3.0.10-1ubuntu3.1.dsc
      Size/MD5: 978 d516ac96d66dbda1388e861ec8220ee7
    http://security.ubuntu.com/ubuntu/pool/main/s/samba/samba_3.0.10.orig.tar.gz
      Size/MD5: 15176926 b19fd86d3c11a1b43f75a5988cd9ceeb

Architecture independent packages:

http://security.ubuntu.com/ubuntu/pool/main/s/samba/samba-doc_3.0.10-1ubuntu3.1_all.deb
Size/MD5: 11676712 55beda5b448bd6ef999d76a8e75ad3aa

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

i386 architecture (x86 compatible Intel/AMD)

powerpc architecture (Apple Macintosh G3/G4/G5)

Updated packages for Ubuntu 5.10:

Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/s/samba/samba_3.0.14a-6ubuntu1.1.diff.gz
      Size/MD5: 127169 9e62727b43e506c5ea6234dcc4f0be7d
    http://security.ubuntu.com/ubuntu/pool/main/s/samba/samba_3.0.14a-6ubuntu1.1.dsc
      Size/MD5: 1111 16ab1ae7afefc0ce4674235c848d7b04
    http://security.ubuntu.com/ubuntu/pool/main/s/samba/samba_3.0.14a.orig.tar.gz
      Size/MD5: 15605851 ebee37e66a8b5f6fd328967dc09088e8

Architecture independent packages:

http://security.ubuntu.com/ubuntu/pool/main/s/samba/samba-doc_3.0.14a-6ubuntu1.1_all.deb
Size/MD5: 12121388 17aaba2f056482144491322bf8db1855

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

i386 architecture (x86 compatible Intel/AMD)

powerpc architecture (Apple Macintosh G3/G4/G5)

sparc architecture (Sun SPARC/UltraSPARC)

Updated packages for Ubuntu 6.06 LTS:

Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/s/samba/samba_3.0.22-1ubuntu3.1.diff.gz
      Size/MD5: 146275 f2190b48b34965126d9c91091e08a7ad
    http://security.ubuntu.com/ubuntu/pool/main/s/samba/samba_3.0.22-1ubuntu3.1.dsc
      Size/MD5: 1197 500907b1e453966707928c61b368d3b1
    http://security.ubuntu.com/ubuntu/pool/main/s/samba/samba_3.0.22.orig.tar.gz
      Size/MD5: 17542657 5c39505af17cf5caf3d6ed8bab135036

Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/s/samba/samba-doc-pdf_3.0.22-1ubuntu3.1_all.deb
      Size/MD5: 6593586 a79a0fd33b9b0591824bad25e3cef54b
    http://security.ubuntu.com/ubuntu/pool/main/s/samba/samba-doc_3.0.22-1ubuntu3.1_all.deb
      Size/MD5: 6901024 c6b905634a78e14111d3e3dc973526b8

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

i386 architecture (x86 compatible Intel/AMD)

powerpc architecture (Apple Macintosh G3/G4/G5)

sparc architecture (Sun SPARC/UltraSPARC)

Ubuntu Security Notice USN-315-1 July 12, 2006
libmms, xine-lib vulnerabilities

A security issue affects the following Ubuntu releases:

Ubuntu 5.04
Ubuntu 5.10
Ubuntu 6.06 LTS

This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the following package versions:

Ubuntu 5.04:
libxine1 1.0-1ubuntu3.8

Ubuntu 5.10:

libmms0 0.1-0ubuntu1.2
libxine1c2 1.0.1-1ubuntu10.4

Ubuntu 6.06 LTS:
libxine-main1 1.1.1+ubuntu2-7.2

In general, a standard system upgrade is sufficient to effect the necessary changes.

Details follow:

Matthias Hopf discovered several buffer overflows in libmms. By tricking a user into opening a specially crafted remote multimedia stream with an application using libmms, a remote attacker could exploit this to execute arbitrary code with the user's privileges.

The Xine library contains an embedded copy of libmms, and thus needs the same security update.

Updated packages for Ubuntu 5.04:

Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.0-1ubuntu3.8.diff.gz
      Size/MD5: 5811 6a41fae784ef1516888d20a8ec08c663
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.0-1ubuntu3.8.dsc
      Size/MD5: 1070 9880832522e9ec56d035abe93b4e2471
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.0.orig.tar.gz
      Size/MD5: 7384258 96e5195c366064e7778af44c3e71f43a

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0-1ubuntu3.8_amd64.deb
      Size/MD5: 106922 2b8375b1f380d86fcf366a18d1f3b902
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.0-1ubuntu3.8_amd64.deb
      Size/MD5: 3567630 d752e90e7d26650aea95d367dcf84790

i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0-1ubuntu3.8_i386.deb
      Size/MD5: 106932 d95e46c206ca84e80a98e01ad404ef71
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.0-1ubuntu3.8_i386.deb
      Size/MD5: 3750548 743fae494abdd778263762de0100a7c9

powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0-1ubuntu3.8_powerpc.deb
      Size/MD5: 106944 2719a6a92c6e4cbbbd884ecdbfe7122e
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.0-1ubuntu3.8_powerpc.deb
      Size/MD5: 3925764 979cd9f6ba73ae35cdce5a965f3068a9

Updated packages for Ubuntu 5.10:

Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/libm/libmms/libmms_0.1-0ubuntu1.2.diff.gz
      Size/MD5: 5750 26bc4a3aa10f4c803fa97f9544ecd0bc
    http://security.ubuntu.com/ubuntu/pool/main/libm/libmms/libmms_0.1-0ubuntu1.2.dsc
      Size/MD5: 607 592210915bc702a6d9e94ecfe0711fa7
    http://security.ubuntu.com/ubuntu/pool/main/libm/libmms/libmms_0.1.orig.tar.gz
      Size/MD5: 317089 ebd88537af9875265e41ee65603ecd1a
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.0.1-1ubuntu10.4.diff.gz
      Size/MD5: 10600 1e73a41d99fb1fb4b2eddb43895caeac
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.0.1-1ubuntu10.4.dsc
      Size/MD5: 1189 9f04d287f5ba301eaf6fd2f9e066e3ae
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.0.1.orig.tar.gz
      Size/MD5: 7774954 9be804b337c6c3a2e202c5a7237cb0f8

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/libm/libmms/libmms-dev_0.1-0ubuntu1.2_amd64.deb
      Size/MD5: 19984 21d4c0a07f60aeb1550f198722d9ec99
    http://security.ubuntu.com/ubuntu/pool/main/libm/libmms/libmms0_0.1-0ubuntu1.2_amd64.deb
      Size/MD5: 16360 bf82acc8e708dbf4605fb6be016e0e40
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0.1-1ubuntu10.4_amd64.deb
      Size/MD5: 108948 92beceb19f7806a47992ca8d6fcb5c9c
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1c2_1.0.1-1ubuntu10.4_amd64.deb
      Size/MD5: 3611402 24bcea7ae2e5a4b5776213fd551851f8

i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/libm/libmms/libmms-dev_0.1-0ubuntu1.2_i386.deb
      Size/MD5: 18312 bbe36a4ac6b616c24be2c7417a44bf26
    http://security.ubuntu.com/ubuntu/pool/main/libm/libmms/libmms0_0.1-0ubuntu1.2_i386.deb
      Size/MD5: 15116 0ed843f14b406370a7a2426ba5c8f459
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0.1-1ubuntu10.4_i386.deb
      Size/MD5: 108956 2c9357c05d883747cb7c1c8218e7a257
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1c2_1.0.1-1ubuntu10.4_i386.deb
      Size/MD5: 4004566 a6eadc42261b15feb9aaaf9a516edaca

powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/libm/libmms/libmms-dev_0.1-0ubuntu1.2_powerpc.deb
      Size/MD5: 20550 88be072a4d9968f6a758d20fba33fb81
    http://security.ubuntu.com/ubuntu/pool/main/libm/libmms/libmms0_0.1-0ubuntu1.2_powerpc.deb
      Size/MD5: 18054 ecafbce4e2a05da7adacd1b8a716f614
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0.1-1ubuntu10.4_powerpc.deb
      Size/MD5: 108966 d29c1cdfad3738f47441a25be906f7b3
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1c2_1.0.1-1ubuntu10.4_powerpc.deb
      Size/MD5: 3849922 360cf1cbe7d3188a64c371734b2e1f73

sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/main/libm/libmms/libmms-dev_0.1-0ubuntu1.2_sparc.deb
      Size/MD5: 20194 d4a2b3a78581779856656d9d0613d7bd
    http://security.ubuntu.com/ubuntu/pool/main/libm/libmms/libmms0_0.1-0ubuntu1.2_sparc.deb
      Size/MD5: 16508 9c210d92de01363a6ea9e37f5728f7a9
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0.1-1ubuntu10.4_sparc.deb
      Size/MD5: 108972 e28a162c5dc38955bea35bdf69101d08
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1c2_1.0.1-1ubuntu10.4_sparc.deb
      Size/MD5: 3695506 e0113a7af33228a79f4f1439f7ec9c3d

Updated packages for Ubuntu 6.06 LTS:

Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.1+ubuntu2-7.2.diff.gz
      Size/MD5: 18634 6ac5ed28ef6bec0091a5febc5e40db8a
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.1+ubuntu2-7.2.dsc
      Size/MD5: 1115 8d62a6c7dc5904bb75c013b07864203d
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.1+ubuntu2.orig.tar.gz
      Size/MD5: 6099365 5d0f3988e4d95f6af6f3caf2130ee992

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.1+ubuntu2-7.2_amd64.deb
      Size/MD5: 115520 4a424ffcb5eb8e99f1f4656e5a68f980
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1.1.1+ubuntu2-7.2_amd64.deb
      Size/MD5: 2614906 607d5b21edde0264b69edf200f6221a4

i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.1+ubuntu2-7.2_i386.deb
      Size/MD5: 115526 a151a6d291e2cbc73245b7c6d0c9ca8e
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1.1.1+ubuntu2-7.2_i386.deb
      Size/MD5: 2933994 a6d1202077f5df87ddde0492fb782945

powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.1+ubuntu2-7.2_powerpc.deb
      Size/MD5: 115532 ab63a178081fc483865a96129fc14351
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1.1.1+ubuntu2-7.2_powerpc.deb
      Size/MD5: 2724624 1f29b24069707f1bc2c6b3fad7bfa92e

sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.1+ubuntu2-7.2_sparc.deb
      Size/MD5: 115536 5713fb50b7d4b6cdc0e8ee83855e22f8
    http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1.1.1+ubuntu2-7.2_sparc.deb
      Size/MD5: 2591402 8bcbbf3ca6e56a52274126cab5e3c846

Ubuntu Security Notice USN-316-1 July 12, 2006
Installer vulnerability
https://launchpad.net/bugs/48350

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS

This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the following package versions:

Ubuntu 6.06 LTS:
passwd 1:4.0.13-7ubuntu3.2

In general, a standard system upgrade is sufficient to effect the necessary changes.

Details follow:

Iwan Pieterse discovered that, if you select "Go Back" at the final message displayed by the alternate or server CD installer ("Installation complete") and then continue with the installation from the installer's main menu, the root password is left blank rather than locked. This was due to an error while clearing out the root password from the installer's memory to avoid possible information leaks.

Installations from the alternate or server CDs when the user selected "Continue" when the "Installation complete" message was first displayed are not affected by this bug. Installations from the desktop CD are not affected by this bug at all.

When you upgrade your passwd package to the newest version, it will detect this condition and lock the root password if it was previously blank. The next point release of Ubuntu 6.06 LTS will include a corrected installer.

Updated packages for Ubuntu 6.06 LTS:

Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/s/shadow/shadow_4.0.13-7ubuntu3.2.diff.gz
      Size/MD5: 204800 1b29e1615364944d98ea95498d6058b8
    http://security.ubuntu.com/ubuntu/pool/main/s/shadow/shadow_4.0.13-7ubuntu3.2.dsc
      Size/MD5: 885 8ccf50d026fa2c4cffe85330f0d0985a
    http://security.ubuntu.com/ubuntu/pool/main/s/shadow/shadow_4.0.13.orig.tar.gz
      Size/MD5: 1622557 034fab52e187e63cb52f153bb7f304c8
    http://security.ubuntu.com/ubuntu/pool/main/u/user-setup/user-setup_1.1ubuntu4.dsc
      Size/MD5: 678 544762def71fb062b6d6f5484a4d7c45
    http://security.ubuntu.com/ubuntu/pool/main/u/user-setup/user-setup_1.1ubuntu4.tar.gz
      Size/MD5: 98334 f8d648ce6a9a007740b0e175b92385eb

Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/u/user-setup/user-setup-udeb_1.1ubuntu4_all.udeb
      Size/MD5: 79418 4ec2af1d5e09f129d486c142575f4081
    http://security.ubuntu.com/ubuntu/pool/main/u/user-setup/user-setup_1.1ubuntu4_all.deb
      Size/MD5: 161864 bc876d6099a323cebd2ffc94df41db06

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/s/shadow/login_4.0.13-7ubuntu3.2_amd64.deb
      Size/MD5: 249450 bfdba1450cbe14f6c71f5d9dee5df9b3
    http://security.ubuntu.com/ubuntu/pool/main/s/shadow/passwd_4.0.13-7ubuntu3.2_amd64.deb
      Size/MD5: 683510 547ad48ac45f6f11cacbd268f42b152a

i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/s/shadow/login_4.0.13-7ubuntu3.2_i386.deb
      Size/MD5: 240938 8500a4c2ab53f11b3fb8cb7fb4e00c78
    http://security.ubuntu.com/ubuntu/pool/main/s/shadow/passwd_4.0.13-7ubuntu3.2_i386.deb
      Size/MD5: 616346 a29d90e0ae7c7c70cbeffcbfba6bf04e

powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/s/shadow/login_4.0.13-7ubuntu3.2_powerpc.deb
      Size/MD5: 251380 bd408187e20f19222e2b4fefe8706552
    http://security.ubuntu.com/ubuntu/pool/main/s/shadow/passwd_4.0.13-7ubuntu3.2_powerpc.deb
      Size/MD5: 665158 4975fe8598b4a8adc98fabcee1b4cb8e

sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/main/s/shadow/login_4.0.13-7ubuntu3.2_sparc.deb
      Size/MD5: 239930 85dde4bfa6d09491338f70efe9d6d336
    http://security.ubuntu.com/ubuntu/pool/main/s/shadow/passwd_4.0.13-7ubuntu3.2_sparc.deb
      Size/MD5: 620124 b0fcdadde2568b1a8324e2500718a18b

No talkbacks posted.

Home | Search Talkbacks | Customize View

Top of Page

Enter your comments below:

All times are recorded in UTC.
Linux is a trademark of Linus Torvalds.
Powered by Linux, Apache and PHP

Terms of Service | Licensing & Permissions | Privacy Policy
About the Developer.com Network | Advertise

Terms of Service | Licensing & Permissions | Privacy Policy
About the IT Business Edge Network | Advertise

Acceptable Use Policy

Terms of Service | Licensing & Permissions | Privacy Policy
About the Developer.com Network | Advertise

Acceptable Use Policy

Terms of Service | Licensing & Permissions | Privacy Policy
About the IT Business Edge Network | Advertise