Section: .. / advisories / debian /
| /// File Name: |
debian.xaw3d.txt |
Description:
|
Debian Security Advisory DSA-037-1 - It has been reported that the AsciiSrc and MultiSrc widget in the Athena widget library handle temporary files insecurely. We recommend you upgrade your nextaw, xaw3d and xaw95 packages.
| | Homepage: | http://www.debian.org/security | | File Size: | 5669 | | Last Modified: | Mar 14 00:34:59 2001 |
| MD5 Checksum: | b64cde613ed491c26e181b4c12f893fa |
|
| /// File Name: |
debain.bind-dos.txt |
Description:
|
Debian Security Advisory - Versions of BIND prior to 8.2.2p7-1 are vulnerable to a denial of service attack which causes the nameserver to crash after accessing an uninitialized pointer.
| | Homepage: | http://www.debian.org/security | | File Size: | 5594 | | Last Modified: | Nov 13 10:09:47 2000 |
| MD5 Checksum: | 2d4211bd0ed40a41f4f351762920ff5e |
|
| /// File Name: |
debian.mc.txt |
Description:
|
Debian Security Advisory DSA-036-1 - It has been reported that a local user could tweak Midnight Commander of another user into executing a random program under the user id of the person running Midnight Commander. This behavior has been fixed in the newest version.
| | Homepage: | http://www.debian.org/security | | File Size: | 5578 | | Last Modified: | Mar 14 00:33:37 2001 |
| MD5 Checksum: | 24b550edd0b2153f46b9bce7f65c53f8 |
|
| /// File Name: |
debian.userv.txt |
Description:
|
Debian Security Advisory - The version of userv that was distributed with Debian GNU/Linux 2.1 had a problem in the fd swapping algorithm: it could sometimes make an out-of-bounds array reference. It is possible for local users to abuse this to carry out unauthorised actions or be able to take control for service user accounts.
| | Homepage: | http://www.debian.org/security | | File Size: | 5501 | | Last Modified: | Jul 27 19:25:56 2000 |
| MD5 Checksum: | f2398952ee060c05db0aa106c80f3afd |
|
| /// File Name: |
debian.curl.txt |
Description:
|
Debian Security Advisory - The version of curl as distributed with Debian GNU/Linux 2.2 had a bug in the error logging code: when it created an error message it failed to check the size of the buffer allocated for storing the message. This could be exploited by the remote machine by returning an invalid response to a request from curl which overflows the error buffer and trick curl into executing arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 5474 | | Last Modified: | Oct 15 21:11:28 2000 |
| MD5 Checksum: | 690aa377305ba10a4e37111b66366214 |
|
| /// File Name: |
debian.ntp.txt |
Description:
|
Debian Security Advisory DSA-045-1 - A buffer overflow has been found in ntp which can lead to remote root compromise. Versions ntp-4.0.99k and prior are vulnerable.
| | Homepage: | http://www.debian.org/security | | File Size: | 5426 | | Last Modified: | Apr 10 04:17:15 2001 |
| MD5 Checksum: | a2e0f5d49258ef5d8fe7f5c317de6113 |
|
| /// File Name: |
debian.xlockmore.txt |
Description:
|
Debian Security Advisory - There is a format string bug in all versions of xlockmore/xlockmore-gl. Debian 2.1 installs xlock setuid by default, allowing local users to read /etc/shadow file.
| | Homepage: | http://www.debian.org/security | | File Size: | 5345 | | Last Modified: | Aug 17 18:21:29 2000 |
| MD5 Checksum: | 27ffc10b20141522e85658c916ea153d |
|
| /// File Name: |
dsa-1020-1.txt |
Description:
|
Debian Security Advisory DSA 1020-1 - Chris Moore discovered that flex, a scanner generator, generates code, which allocates insufficient memory, if the grammar contains REJECT statements or trailing context rules. This may lead to a buffer overflow and the execution of arbitrary code.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 5295 | | Last Modified: | Apr 5 00:18:33 2006 |
| MD5 Checksum: | 557d74c08692a9e9d71ade15777215df |
|
| /// File Name: |
debian.zope.txt |
Description:
|
Debian Security Advisory - On versions of Zope prior to 2.2beta1 it was possible for a user with the ability to edit DTML can gain unauthorized access to extra roles during a request.
| | Homepage: | http://www.debian.org/security | | File Size: | 5259 | | Last Modified: | Mar 15 23:58:25 2001 |
| MD5 Checksum: | c48c94aca5f08103caa9e3d767bf0739 |
|
| /// File Name: |
debian.mailx-system.txt |
Description:
|
Debian Security Advisory - mailx is a often used by other programs to send email. Unfortunately mailx as distributed in Debian GNU/Linux 2.1 has some features that made it possible to execute system commands if a user can trick a privileged program to send email using /usr/bin/mail.
| | Homepage: | http://www.debian.org/security | | File Size: | 5095 | | Last Modified: | Aug 9 09:31:57 2000 |
| MD5 Checksum: | 1d83738a4cc2e382561735255aebe3a7 |
|
| /// File Name: |
debian.xcmd.txt |
Description:
|
Debian Security Advisory - The Debian GNU/Linux xmcd package has historically installed two setuid helpers for accessing cddb databases and SCSI cdrom drives. More recently, the package offered the administrator the chance to remove these setuid flags, but did so incorrectly. A buffer overflow in ncurses, linked to the "cda" binary, allowed a root exploit. Fixed ncurses packages have been released, as well as fixed xmcd packages which do not install this binary with a setuid flag. The problem is fixed in xmcd 2.5pl1-7.1, and we recommend all users with xmcd installed upgrade to this release. You may need to add users of xmcd to the "audio" and "cdrom" groups in order for them to continue using xmcd.
| | Homepage: | http://www.debian.org/security | | File Size: | 5047 | | Last Modified: | Nov 26 02:41:56 2000 |
| MD5 Checksum: | f6cdf21fb5180ab2b35a7e07ebbff947 |
|
| /// File Name: |
debian.wu-ftpd.txt |
Description:
|
Debian Security Advisory - The version of wu-ftpd distributed in Debian GNU/Linux 2.1 is vulnerable to a remote root compromise. The default configuration in all current Debian packages prevents the currently available exploits in the case of anonymous access, although local users can still compromise the server.
| | Homepage: | http://security.debian.org | | File Size: | 4949 | | Last Modified: | Jun 24 00:49:05 2000 |
| MD5 Checksum: | 5cb66f1b0abc872c0c14e8f0258cfdb7 |
|
| /// File Name: |
debian.openssh.txt |
Description:
|
Debian Security Advisory DSA-027-1 - Versions of OpenSSH prior to v2.3.0p1 are vulnerable to a remote arbitrary memory overwrite attack which may eventually lead into a root exploit. New version available here.
| | Homepage: | http://www.debian.org/security | | File Size: | 4947 | | Last Modified: | Feb 14 06:48:49 2001 |
| MD5 Checksum: | 39de84b210c9d078847ff8c944021760 |
|
| /// File Name: |
debian.tcsh.txt |
Description:
|
Debian Security Advisory - A temp file vulnerability has been found in tcsh prior v6.09.00-10 when using the double less than (<<) input redirection. Arbitrary files can be overwritten as the user running tcsh.
| | Homepage: | http://www.debian.org/security | | File Size: | 4740 | | Last Modified: | Nov 11 23:47:33 2000 |
| MD5 Checksum: | e01eb29edf05bae94d5b42df9ec6f6e4 |
|
| /// File Name: |
debian.mysql.txt |
Description:
|
Debian Security Advisory DSA-013-1 - A buffer overflow has been discovered in the Mysql server v3.22.32 which allows remote attackers to gain mysqld privileges.
| | Homepage: | http://www.debian.org/security | | File Size: | 4708 | | Last Modified: | Jan 25 22:59:54 2001 |
| MD5 Checksum: | e5748a33f868012b89ca9355459b1930 |
|
| /// File Name: |
debian.slrn.txt |
Description:
|
Debian Security Advisory DSA-040-1 - The slrn newsreader has remotely exploitable buffer overflows if the wrapping/unwrapping functions are enabled.
| | Homepage: | http://www.debian.org/security | | File Size: | 4592 | | Last Modified: | Mar 15 21:19:48 2001 |
| MD5 Checksum: | 585880baaeff9496b6bc666274f2034b |
|
| /// File Name: |
debian.screen.txt |
Description:
|
Debian Security Advisory - A format string bug was recently discovered in screen which allows local users to obtain root access if screen is setuid. This is fixed in version 3.7.4-9.1 and 3.9.5-9.
| | Homepage: | http://www.debian.org/security | | File Size: | 4500 | | Last Modified: | Sep 6 23:22:39 2000 |
| MD5 Checksum: | 68e60099188baca4cca9424730989d5c |
|
| /// File Name: |
debian.canna.txt |
Description:
|
Debian Security Advisory - The canna package as distributed in Debian GNU/Linux 2.1 can be remotely exploited to gain access. This could be done by overflowing a buffer by sending a SR_INIT command with a very long usernamd or groupname.
| | Homepage: | http://www.debian.org/security | | File Size: | 4491 | | Last Modified: | Jul 4 05:26:30 2000 |
| MD5 Checksum: | 66ad48b77d8bc5997648b1e0b1f5423a |
|
| /// File Name: |
debian.nis.txt |
Description:
|
Debian Security Advisory - The version of nis as distributed in Debian GNU/Linux 2.1 and 2.2 contains a ypbind package with a security problem. A format string attack can be used to run arbitrary code as root.
| | Homepage: | http://www.debian.org/security | | File Size: | 4481 | | Last Modified: | Oct 15 21:22:06 2000 |
| MD5 Checksum: | c9d538d6e96ae072ee7d1fc8e8771778 |
|
| /// File Name: |
debian.gpg.txt |
Description:
|
Debian Security Advisory - There is a problem in the way gpg checks detached signatures which can lead to false positives. Also it was discovered that gpg would import secret keys from key-servers, circumventing the web of trust. GnuPG homepage here.
| | Homepage: | http://www.debian.org/security | | File Size: | 4475 | | Last Modified: | Dec 27 06:36:22 2000 |
| MD5 Checksum: | c310fad9afc780a8461621c247cb6e24 |
|
| /// File Name: |
debian.nano.txt |
Description:
|
Debian Security Advisory - The problem that was previously reported for joe also occurs with other editors. When nano (a free pico clone) unexpectedly dies it tries a warning message to a new file with a predictable name. Unfortunately that file was not created safely which made nano vulnerable to a symlink attack. This has been fixed in version 0.9.23-1 (except for powerpc, which has version 0.9.23-1.1).
| | Homepage: | http://www.debian.org/security | | File Size: | 4431 | | Last Modified: | Dec 19 03:21:15 2000 |
| MD5 Checksum: | 92f15aef749f9005b0474ca16d4b58f2 |
|
| /// File Name: |
debian.elvis-tiny.txt |
Description:
|
Debian Security Advisory - A tempfile bug was discovered in elvis-tiny prior to v1.4-10 which does not exist in the full size elvis.
| | Homepage: | http://www.debian.org/security | | File Size: | 4277 | | Last Modified: | Nov 25 09:46:11 2000 |
| MD5 Checksum: | 12fe2b7c8ad591e7732f2a5225374d48 |
|
| /// File Name: |
debian.modutils.txt |
Description:
|
Debian Security Advisory - A problem in the modprobe utility that can be exploited by local users to run arbitrary commands as root if the machine is running a kernel with kmod enabled has been discovered.
| | Homepage: | http://www.debian.org/security | | File Size: | 4190 | | Last Modified: | Nov 25 07:05:25 2000 |
| MD5 Checksum: | dcf44634a6c622fa1aa2981a6037b5d1 |
|
| /// File Name: |
debian.cron.txt |
Description:
|
Debian Security Advisory - The version of Vixie Cron shipped with Debian GNU/Linux 2.2 is vulnerable to a local attack, discovered by Michal Zalewski. Several problems, including insecure permissions on temporary files and race conditions in their deletion, allowed attacks from a denial of service (preventing the editing of crontabs) to an escalation of privilege (when another user edited their crontab). As a temporary fix, "chmod go-rx /var/spool/cron/crontabs" prevents the only available exploit; however, it does not address the problem - upgrade is needed.
| | Homepage: | http://www.debian.org/security | | File Size: | 4153 | | Last Modified: | Nov 19 04:19:35 2000 |
| MD5 Checksum: | b56b24c7cc37e3ca08d286fd8b497f37 |
|
| /// File Name: |
debian.nfs-common.txt |
Description:
|
Debian Security Advisory - The version of nfs-common distributed in Debian GNU/Linux 2.2 is vulnerable to a remote root compromise involving rpc.statd.
| | Homepage: | http://www.debian.org/security | | File Size: | 4097 | | Last Modified: | Jul 18 00:51:51 2000 |
| MD5 Checksum: | 5e0513b893db5539e05449413bad8c8f |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
