Security Linux News for Jan 23, 2001
Debian Security Advisory: New version of tinyproxy released (Jan 23, 2001, 22:12)
"PkC have found a heap overflow in tinyproxy that could be
remotely exploited. An attacker could gain a shell (user nobody)
Red Hat Security Advisory: Updated mysql packages available for Red Hat Linux 7 (Jan 23, 2001, 21:08)
"The MySQL database that shipped with Red Hat Linux 7 and the
updates for it have been reported by the MySQL authors to have
Debian Security Advisory: New version of jazip released (Jan 23, 2001, 20:59)
"With older versions of jazip a user could gain root access for
members of the floppy group to the local machine. The interface
doesn't run as root anymore and this very exploit was prevented.
The program now also truncates DISPLAY to 256 characters if it is
bigger, which closes the buffer overflow (within xforms)."
Debian Security Advisory: New version of wu-ftpd released (Jan 23, 2001, 20:55)
"Security people at WireX have noticed a temp file creation bug
and the WU-FTPD development team has found a possible format string
bug in wu-ftpd. Both could be remotely exploited, though no such
exploit exists currently."
Debian Security Advisory: Correction: New version of splitvt released (Jan 23, 2001, 20:49)
"This advisory is only a corrected security advisory for DSA
014-1 since I wasn't careful enough last night and files from an
older advisory back from June 2000 slipped through. To keep
confusion to a minimum this advisory contains all relevant URLs -
and only these."
ZDNet UK: Vandals mutate Ramen Linux worm (Jan 23, 2001, 16:43)
"...the fear among experts is not that the current worm will
spread but that nastier varieties will attempt to use the same
flaws to gain access to online servers."
Debian Security Advisory: New version of sash released (Jan 23, 2001, 08:16)
"Versions of sash prior to 3.4-4 did not clone /etc/shadow
properly which lead into readable files for anybody. This was fixed
by the Debian maintainer."
Debian Security Advisory: New version of splitvt released (Jan 23, 2001, 08:11)
"It was reported recently that splitvt is vulnerable to numerous
buffer overflow attack and a format string attack. An attacker was
able to gain access to the tty group."
Debian Security Advisory: New version of MySQL released (Jan 23, 2001, 08:04)
"Nicolas Gregoire has reported a buffer overflow in the mysql
server that leads to a remote exploit. An attacker could gain
mysqld privileges (and thus gaining access to all the
Trustix Security Advisory - glibc (Jan 23, 2001, 01:12)
"Trustix is, like many other linux distributions, based on Glibc
2.1.3 and is therefore open to the "preload hole" discussed in
various postings to bugtraq and other lists."
Caldera Systems Security Advisory: security problems in webmin (Jan 23, 2001, 00:02)
"On several occasions, webmin creates temporary files
insecurely. This can be exploited by a local attacker to overwrite
or create arbitrary files and possibly gain root privilege."