OpenLinux: rsync heap based overflow
Heap-based buffer overflow in rsync before 2.5.7, when running in
server mode, allows remote attackers to execute arbitrary code
and possibly escape the chroot jail.
The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CAN-2003-0962 to this issue
The proper solution is to install the latest packages. Many
customers find it easier to use the Caldera System Updater, called
cupdate (or kcupdate under the KDE environment), to update these
packages rather than downloading and installing them by hand
http://www.linuxsecurity.com/advisor...dvisory-4104.h OpenLinux: screen buffer overflow
Integer signedness error in ansi.c for GNU screen 4.0.1 and
earlier, and 3.9.15 and earlier, could allows local users to
execute arbitrary code via a large number of characters in
escape sequences, which leads to a buffer overflow.
The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CAN-2003-0972 to this issue.
2. Vulnerable Supported Versions
System Package
----------------------------------------------------------------------
OpenLinux 3.1.1 Server prior to screen-3.9.10-2.i386.rpm
OpenLinux 3.1.1 Workstation prior to screen-3.9.10-2.i386.rpm
Solution
The proper solution is to install the latest packages. Many
customers find it easier to use the Caldera System Updater, called
cupdate (or kcupdate under the KDE environment), to update these
packages rather than downloading and installing them by hand.
http://www.linuxsecurity.com/advisor...sory-4105.html OpenLinux: cups denial of service vulnerability
Problem Description
Unknown vulnerability in the Internet Printing Protocol (IPP)
implementation in CUPS before 1.1.19 allows remote attackers to
cause a denial of service via certain inputs to the IPP port.
The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CAN-2003-0788 to this issue.
2. Vulnerable Supported Versions
System Package
----------------------------------------------------------------------
OpenLinux 3.1.1 Server prior to cups-1.1.20-1.i386.rpm
prior to cups-devel-1.1.20-1.i386.rpm
prior to cups-libs-1.1.20-1.i386.rpm
OpenLinux 3.1.1 Workstation prior to cups-1.1.20-1.i386.rpm
prior to cups-devel-1.1.20-1.i386.rpm
prior to cups-libs-1.1.20-1.i386.rpm
3. Solution
The proper solution is to install the latest packages. This patch
obsoletes two cups rpm packages namely cups-client and cups-ppd.
These packages need to be removed from the system.
To remove cups-client and cups-ppd from your system, as the root
user issue the following commands:
#rpm -e cups-client
#rpm -e cups-ppd
Note: Warning messages about directories not removed is expected.
After the two obsoleted packages are removed, you can install the
updated packages manually or use the Caldera System Updater,
called cupdate (or kcupdate under the KDE environment).
Problem Description
Unknown vulnerability in the Internet Printing Protocol (IPP)
implementation in CUPS before 1.1.19 allows remote attackers to
cause a denial of service via certain inputs to the IPP port.
The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CAN-2003-0788 to this issue.
2. Vulnerable Supported Versions
System Package
----------------------------------------------------------------------
OpenLinux 3.1.1 Server prior to cups-1.1.20-1.i386.rpm
prior to cups-devel-1.1.20-1.i386.rpm
prior to cups-libs-1.1.20-1.i386.rpm
OpenLinux 3.1.1 Workstation prior to cups-1.1.20-1.i386.rpm
prior to cups-devel-1.1.20-1.i386.rpm
prior to cups-libs-1.1.20-1.i386.rpm
3. Solution
The proper solution is to install the latest packages. This patch
obsoletes two cups rpm packages namely cups-client and cups-ppd.
These packages need to be removed from the system.
To remove cups-client and cups-ppd from your system, as the root
user issue the following commands:
#rpm -e cups-client
#rpm -e cups-ppd
Note: Warning messages about directories not removed is expected.
After the two obsoleted packages are removed, you can install the
updated packages manually or use the Caldera System Updater,
called cupdate (or kcupdate under the KDE environment).
http://www.linuxsecurity.com/advisor...sory-4106.html libxml, libxml2
libxml2 is a library for manipulating XML files.
Yuuichi Teranishi discovered a flaw in libxml, the GNOME XML library.
When fetching a remote resource via FTP or HTTP, the library uses
special parsing routines which can overflow a buffer if passed a very
long URL. If an attacker is able to find an application using libxml1
or libxml2 that parses remote resources and allows the attacker to
craft the URL, then this flaw could be used to execute arbitrary code.
For the stable distribution (woody) this problem has been fixed in
version 1.8.17-2woody1 of libxml and version 2.4.19-4woody1 of libxml2.
For the unstable distribution (sid) this problem has been fixed in
version 1.8.17-5 of libxml and version 2.6.6-1 of libxml2.
We recommend that you upgrade your libxml1 and libxml2 packages.
http://www.linuxsecurity.com/advisor...sory-4107.html Fedora
Tcpdump is a command-line tool for monitoring network traffic.
Tcpdump can capture and display the packet headers on a particular
network interface or on all interfaces. Tcpdump can display all of
the packet headers, or just the ones that match particular criteria.
Install tcpdump if you need a program to monitor network traffic.
Updated tcpdump, libpcap, and arpwatch packages fix vulnerabilities in
ISAKMP and RADIUS parsing.
Tcpdump is a command-line tool for monitoring network traffic.
George Bakos discovered flaws in the ISAKMP decoding routines of tcpdump
versions prior to 3.8.1. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2003-0989 to this issue.
Jonathan Heusser discovered an additional flaw in the ISAKMP decoding
routines for tcpdump 3.8.1 and earlier. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CAN-2004-0057 to
this issue.
Jonathan Heusser discovered a flaw in the print_attr_string function in the RADIUS decoding routines for tcpdump 3.8.1 and earlier. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0055 to this issue.
Remote attackers could potentially exploit these issues by sending
carefully-crafted packets to a victim. If the victim uses tcpdump, these
pakets could result in a denial of service, or possibly execute arbitrary code as the 'pcap' user.
Users of tcpdump are advised to upgrade to these erratum packages, which
contain backported security patches and are not vulnerable to these issues.
http://www.linuxsecurity.com/advisor...sory-4108.html Mandrakelinux
The NISCC uncovered bugs in pwlib prior to version 1.6.0 via a test
suite for the H.225 protocol. An attacker could trigger these bugs
by sending carefully crafted messages to an application that uses
pwlib, and the severity would vary based on the application, but
likely would result in a Denial of Service (DoS).
The updated packages provide backported fixes from Craig Southeren
of the OpenH323 project to protect against this issue.
http://www.linuxsecurity.com/advisor...sory-4109.html Mandrakelinux
A flaw in libxml2 versions prior to 2.6.6 was found by Yuuichi
Teranishi. When fetching a remote source via FTP or HTTP, libxml2
uses special parsing routines that can overflow a buffer if passed a
very long URL. In the event that the attacker can find a program that
uses libxml2 which parses remote resources and allows them to
influence the URL, this flaw could be used to execute arbitrary code.
The updated packages provide a backported fix to correct the problem.
http://www.linuxsecurity.com/advisor...sory-4110.html mailman
Mailman is software to help manage email discussion lists, much like
Majordomo and Smartmail. Unlike most similar products, Mailman gives
each mailing list a webpage, and allows users to subscribe,
unsubscribe, etc. over the Web. Even the list manager can administer
his or her list entirely from the Web. Mailman also integrates most
things people want to do with mailing lists, including archiving, mail
<-> news gateways, and so on.
Documentation can be found in: /usr/share/doc/mailman-2.1.4
When the package has finished installing, you will need to perform some
additional installation steps, these are described in:
/usr/share/doc/mailman-2.1.4/INSTALL.REDHAT
http://www.linuxsecurity.com/advisor...sory-4111.html Updated util-linux resolves security vulnerability
Updated util-linux packages that fix an information leak in the login
program are now available.
2. Relevent releases/architectures:
Red Hat Linux 7.2 - i386
3. Problem description:
The util-linux package contains a large variety of low-level system
utilities that are necessary for a Linux system to function.
In some situations, the login program could use a pointer that had been
freed and reallocated. This could cause unintentional data leakage.
Note: Red Hat Linux releases newer than 7.2 are not vulnerable to this
issue.
It is recommended that all users upgrade to these updated packages, which
are not vulnerable to this issue.
Fedora Legacy would like to thank Matthew Lee of Fleming College for
finding and reporting this issue, and Jesse Keating for providing a
backported patch for Red Hat Linux 7.2.
http://www.linuxsecurity.com/advisor...sory-4112.html kernel-source-2.2.19, kernel-patch-2.2.19-arm, kernel-image-2.2.19-netwinder, kernel-image-2.2.19-riscpc
Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical
security vulnerability in the memory management code of Linux inside
the mremap(2) system call. Due to flushing the TLB (Translation
Lookaside Buffer, an address cache) too early it is possible for an
attacker to trigger a local root exploit.
The attack vectors for 2.4.x and 2.2.x kernels are exclusive for the
respective kernel series, though. We formerly believed that the
exploitable vulnerability in 2.4.x does not exist in 2.2.x which is
still true. However, it turned out that a second (sort of)
vulnerability is indeed exploitable in 2.2.x, but not in 2.4.x, with a
different exploit, of course.
For the stable distribution (woody) this problem has been fixed in
version 20040303 of 2.2 kernel images for the arm architecture.
For the unstable distribution (sid) this problem will be fixed soon
for the architectures that still ship a 2.2.x kernel package.
We recommend that you upgrade your Linux kernel package.
http://www.linuxsecurity.com/advisor...sory-4113.html Gentoo Linux
A buffer overflow has been discovered in libxml2 versions prior to
2.6.6 which may be exploited by an attacker allowing the execution of
arbitrary code.
Description
===========
Yuuichi Teranishi discovered a flaw in libxml2 versions prior to 2.6.6.
When the libxml2 library fetches a remote resource via FTP or HTTP,
libxml2 uses parsing routines that can overflow a buffer caused by
improper bounds checking if they are passed a URL longer than 4096
bytes.
Impact
======
If an attacker is able to exploit an application using libxml2 that
parses remote resources, then this flaw could be used to execute
arbitrary code.
Workaround
==========
No workaround is available; users are urged to upgrade libxml2 to
2.6.6.
http://www.linuxsecurity.com/advisor...sory-4114.html Gentoo Linux
Synopsis
========
A critical security vulnerability has been found in recent Linux
kernels by Paul Starzetz of iSEC Security Research which allows for
local privilege escalations.
Background
==========
The Linux kernel is responsible for memory management in a working
system - to allow this, processes are allowed to allocate and
unallocate memory.
Affected packages
=================
~ -------------------------------------------------------------------
~ Kernel / Unaffected Version / Manual Update?
~ -------------------------------------------------------------------
~ aa-sources................2.4.23-r1...................YES..........
~ alpha-sources.............2.4.21-r4................................
~ ck-sources................2.4.24-r1...................YES..........
~ ck-sources................2.6.2-r1....................YES..........
~ compaq-sources............2.4.9.32.7-r2............................
~ development-sources.......2.6.3_rc1................................
~ gaming-sources............2.4.20-r8................................
~ gentoo-dev-sources........2.6.3_rc1................................
~ gentoo-sources............2.4.19-r11...............................
~ gentoo-sources............2.4.20-r12...............................
~ gentoo-sources............2.4.22-r7................................
~ grsec-sources.............2.4.24.1.9.13-r1.........................
~ gs-sources................2.4.25_pre7-r2...........................
~ hardened-sources..........2.4.24-r1................................
~ hppa-dev-sources..........2.6.2_p3-r1..............................
~ hppa-sources..............2.4.24_p0-r1.............................
~ ia64-sources..............2.4.24-r1................................
~ mips-prepatch-sources.....2.4.25_pre6-r1...........................
~ mips-sources..............2.4.25_rc4...............................
~ mm-sources................2.6.3_rc1-r1.............................
~ openmosix-sources.........2.4.22-r4................................
~ pac-sources...............2.4.23-r3................................
~ planet-ccrma-sources......2.4.21-r5................................
~ ppc-development-sources...2.6.3_rc1-r1.............................
~ ppc-sources...............2.4.24-r1................................
~ ppc-sources-benh..........2.4.22-r5................................
~ ppc-sources-crypto........2.4.20-r3................................
~ ppc-sources-dev...........2.4.24-r2................................
~ selinux-sources...........2.4.24-r2................................
~ sparc-dev-sources.........2.6.3_rc1................................
~ sparc-sources.............2.4.24-r2................................
~ usermode-sources..........2.4.24-r1................................
~ usermode-sources..........2.6.3-r1.................................
~ vanilla-prepatch-sources..2.4.25_rc4...............................
~ vanilla-sources...........2.4.25...................................
~ win4lin-sources...........2.4.23-r2................................
~ win4lin-sources...........2.6.2-r1.................................
~ wolk-sources..............4.9-r4...................................
~ wolk-sources..............4.10_pre7-r3.............................
~ xfs-sources...............2.4.24-r2................................
~ IMPORTANT: IF YOUR KERNEL IS MARKED AS "YES" ABOVE, THEN YOU SHOULD
~ UPDATE YOUR KERNEL EVEN IF PORTAGE REPORTS THAT THE SAME
~ VERSION IS INSTALLED.
http://www.linuxsecurity.com/advisor...sory-4115.html
Regards
eddie
Welcome to Tech Support Guy! Read our Welcome Guide or take a minute to watch the video below!
Linux and Unix 
Search 
