Red Hat Security Advisory
Synopsis: Updated CVS packages fix security issue
Advisory ID: RHSA-2004:154-01
Issue date: 2004-04-14
Updated on: 2004-04-14
Product: Red Hat Linux
Keywords:
Cross references:
Obsoletes: RHSA-2004:003
CVE Names: CAN-2004-0180
1. Topic:
Updated cvs packages that fix a client vulnerability that could
be exploited by a malicious server are now available.
2. Relevant releases/architectures:
Red Hat Linux 9 – i386
3. Problem description:
CVS is a version control system frequently used to manage source
code repositories.
Sebastian Krahmer discovered a flaw in CVS clients where rcs
diff files can create files with absolute pathnames. An attacker
could create a fake malicious CVS server that would cause arbitrary
files to be created or overwritten when a victim connects to it.
The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the name
CAN-2004-0180 to this issue.
Users of CVS are advised to upgrade to these erratum packages,
which contain a patch correcting this issue.
4. Solution:
Before applying this update, make sure all previously released
errata relevant to your system have been applied.
To update all RPMs for your particular architecture, run:
rpm -Fvh [filenames]
where [filenames] is a list of the RPMs you wish to upgrade.
Only those RPMs which are currently installed will be updated.
Those RPMs which are not installed but included in the list will
not be updated. Note that you can also use wildcards (*.rpm) if
your current directory only contains the desired RPMs.
Please note that this update is also available via Red Hat
Network. Many people find this an easier way to apply updates. To
use Red Hat Network, launch the Red Hat Update Agent with the
following command:
up2date
This will start an interactive process that will result in the
appropriate RPMs being upgraded on your system.
5. RPMs required:
Red Hat Linux 9:
SRPMS:
ftp://updates.redhat.com/9/en/os/SRPMS/cvs-1.11.2-17.src.rpm
i386:
ftp://updates.redhat.com/9/en/os/i386/cvs-1.11.2-17.i386.rpm
6. Verification:
MD5 sum Package Name
44ad2349b6b00275273280eac1a52e20
9/en/os/SRPMS/cvs-1.11.2-17.src.rpm
586d676137b75f940baa90ee28fd33ce
9/en/os/i386/cvs-1.11.2-17.i386.rpm
These packages are GPG signed by Red Hat for security. Our key
is available from https://www.redhat.com/security/team/key.html
You can verify each package with the following command:
rpm –checksig -v
If you only wish to verify that each package has not been
corrupted or tampered with, examine only the md5sum with the
following command:
md5sum
7. References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0180
8. Contact:
The Red Hat security contact is <<A
HREF=”mailto:secalert@redhat.com”>secalert@redhat.com>. More
contact details at https://www.redhat.com/security/team/contact.html
Copyright 2004 Red Hat, Inc.
Red Hat Security Advisory
Synopsis: Updated cadaver package fixes security vulnerability
in neon
Advisory ID: RHSA-2004:158-01
Issue date: 2004-04-14
Updated on: 2004-04-14
Product: Red Hat Linux
Keywords:
Cross references:
Obsoletes:
CVE Names: CAN-2004-0179
1. Topic:
An updated cadaver package that fixes a vulnerability in neon
exploitable by a malicious DAV server is now available.
2. Relevant releases/architectures:
Red Hat Linux 9 – i386
3. Problem description:
cadaver is a command-line WebDAV client that uses inbuilt code
from neon, an HTTP and WebDAV client library.
Versions of the neon client library up to and including 0.24.4
have been found to contain a number of format string bugs. An
attacker could create a malicious WebDAV server in such a way as to
allow arbitrary code execution on the client should a user connect
to it using cadaver. The Common Vulnerabilities and Exposures
project (cve.mitre.org/) has
assigned the name CAN-2004-0179 to this issue.
Users of cadaver are advised to upgrade to this updated package,
which contains a patch correcting this issue.
4. Solution:
Before applying this update, make sure all previously released
errata relevant to your system have been applied.
To update all RPMs for your particular architecture, run:
rpm -Fvh [filenames]
where [filenames] is a list of the RPMs you wish to upgrade.
Only those RPMs which are currently installed will be updated.
Those RPMs which are not installed but included in the list will
not be updated. Note that you can also use wildcards (*.rpm) if
your current directory only contains the desired RPMs.
Please note that this update is also available via Red Hat
Network. Many people find this an easier way to apply updates. To
use Red Hat Network, launch the Red Hat Update Agent with the
following command:
up2date
This will start an interactive process that will result in the
appropriate RPMs being upgraded on your system.
If up2date fails to connect to Red Hat Network due to SSL
Certificate Errors, you need to install a version of the up2date
client with an updated certificate. The latest version of up2date
is available from the Red Hat FTP site and may also be downloaded
directly from the RHN website:
https://rhn.redhat.com/help/latest-up2date.pxt
5. RPMs required:
Red Hat Linux 9:
SRPMS:
ftp://updates.redhat.com/9/en/os/SRPMS/cadaver-0.22.0-2.2.src.rpm
i386:
ftp://updates.redhat.com/9/en/os/i386/cadaver-0.22.0-2.2.i386.rpm
6. Verification:
MD5 sum Package Name
517f4e41e80560cf0c40e12112cfd748
9/en/os/SRPMS/cadaver-0.22.0-2.2.src.rpm
53a4af284026d42b837f704fe6568ce8
9/en/os/i386/cadaver-0.22.0-2.2.i386.rpm
These packages are GPG signed by Red Hat for security. Our key
is available from https://www.redhat.com/security/team/key.html
You can verify each package with the following command:
rpm –checksig -v
If you only wish to verify that each package has not been
corrupted or tampered with, examine only the md5sum with the
following command:
md5sum
7. References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0179
8. Contact:
The Red Hat security contact is <<A
HREF=”mailto:secalert@redhat.com”>secalert@redhat.com>. More
contact details at https://www.redhat.com/security/team/contact.html
Copyright 2004 Red Hat, Inc.