Section: .. / advisories / debian /
| /// File Name: |
debain.bind-dos.txt |
Description:
|
Debian Security Advisory - Versions of BIND prior to 8.2.2p7-1 are vulnerable to a denial of service attack which causes the nameserver to crash after accessing an uninitialized pointer.
| | Homepage: | http://www.debian.org/security | | File Size: | 5594 | | Last Modified: | Nov 13 10:09:47 2000 |
| MD5 Checksum: | 2d4211bd0ed40a41f4f351762920ff5e |
|
| /// File Name: |
debian.analog.txt |
Description:
|
Debian Security Advisory - A buffer overflow in all versions of Analog except 4.16 has been discovered in the ALIAS command. This bug is particularly dangerous if the form interface (which allows unknown users to run the program via a CGI script) has been installed.
| | Homepage: | http://www.debian.org/security | | File Size: | 3964 | | Last Modified: | Mar 10 02:02:19 2001 |
| MD5 Checksum: | 0fe3e9e21a308bbfb82a017aaed58a2d |
|
| /// File Name: |
debian.apache.txt |
Description:
|
Debian Security Advisory DSA-021-1 - The mod_rewrite module for Apache has a remote vulnerability which may allow a remote attacker to gain access to arbitrary files. Users of the mod_rewrite module are advised to upgrade. In addition, htdigest and htpasswd use tempfiles insecurely. Since they are not setuid, impact is minimal.
| | Homepage: | http://www.debian.org/security | | File Size: | 5806 | | Last Modified: | Jan 27 08:00:39 2001 |
| MD5 Checksum: | 077ed523f7eb1d0e211fd199c015a301 |
|
| /// File Name: |
debian.apcd.txt |
Description:
|
The apcd package as shipped in Debian GNU/Linux 2.1 is vulnerable to a symlink attack. Debian security homepage here.
| | File Size: | 3159 | | Last Modified: | Feb 2 01:36:53 2000 |
| MD5 Checksum: | f411713febd127d6d8f056281ee883c3 |
|
| /// File Name: |
debian.bind.txt |
Description:
|
The version bind that was distributed in Debian GNU/Linux 2.1 has a vulnerability in the processing of NXT records that can be used by an attacked in a Debian of Service attack or exploited to gain root access to the server. This has been fixed in version 8.2.5p5-0slink1, and we recommend that you upgrade your bind package immediately. Debian security homepage here.
| | File Size: | 3677 | | Last Modified: | Nov 17 21:21:08 1999 |
| MD5 Checksum: | c54927e4c04dc6d6857c80bbf06fbc95 |
|
| /// File Name: |
debian.bind2.txt |
Description:
|
Debian Security Advisory DSA-026-1 - BIND 8 suffered from several buffer overflows which affect Debian distributions. It is possible to construct an inverse query that allows the stack to be read remotely exposing environment variables.
| | Homepage: | http://www.debian.org/security | | File Size: | 6067 | | Last Modified: | Feb 1 00:28:03 2001 |
| MD5 Checksum: | 2bf9801181e5a8a74736438a87c6d756 |
|
| /// File Name: |
debian.canna.txt |
Description:
|
Debian Security Advisory - The canna package as distributed in Debian GNU/Linux 2.1 can be remotely exploited to gain access. This could be done by overflowing a buffer by sending a SR_INIT command with a very long usernamd or groupname.
| | Homepage: | http://www.debian.org/security | | File Size: | 4491 | | Last Modified: | Jul 4 05:26:30 2000 |
| MD5 Checksum: | 66ad48b77d8bc5997648b1e0b1f5423a |
|
| /// File Name: |
debian.cfingerd.txt |
Description:
|
Debian Security Advisory DSA-048-1 - Cfingerd v1.4.1 and below contains a remote root vulnerability in the logging code. When combining this with an off-by-one error in the code that copied the username from an ident response cfingerd could exploited by a remote user.
| | Homepage: | http://www.debian.org/security | | File Size: | 3652 | | Last Modified: | Apr 22 22:25:42 2001 |
| MD5 Checksum: | d0594c2c0c58fed4871dfee1cb2ae0b2 |
|
| /// File Name: |
debian.cron.txt |
Description:
|
Debian Security Advisory - The version of Vixie Cron shipped with Debian GNU/Linux 2.2 is vulnerable to a local attack, discovered by Michal Zalewski. Several problems, including insecure permissions on temporary files and race conditions in their deletion, allowed attacks from a denial of service (preventing the editing of crontabs) to an escalation of privilege (when another user edited their crontab). As a temporary fix, "chmod go-rx /var/spool/cron/crontabs" prevents the only available exploit; however, it does not address the problem - upgrade is needed.
| | Homepage: | http://www.debian.org/security | | File Size: | 4153 | | Last Modified: | Nov 19 04:19:35 2000 |
| MD5 Checksum: | b56b24c7cc37e3ca08d286fd8b497f37 |
|
| /// File Name: |
debian.cron2.txt |
Description:
|
Debian Security Advisory DSA-024-1 - The FreeBSD team has found a bug in the way new crontabs were handled which allowed malicious users to display arbitrary crontab files on the local system. This only affects valid crontab files so can't be used to get access to /etc/shadow or anything.
| | Homepage: | http://www.debian.org/security | | File Size: | 3767 | | Last Modified: | Jan 31 21:37:21 2001 |
| MD5 Checksum: | 9bdae6143004633ee4987fa07754723c |
|
| /// File Name: |
debian.cron3.txt |
Description:
|
Debian Security Advisory DSA-054-1 - A recent (fall 2000) security fix to cron introduced an error in giving up privileges before invoking the editor. A malicious user can easily gain root access. This has been fixed in version 3.0pl1-57.3.
| | Homepage: | http://www.debian.org/security | | File Size: | 3422 | | Last Modified: | May 9 00:26:56 2001 |
| MD5 Checksum: | ed96a529b8d78aecb08b62cb946238c3 |
|
| /// File Name: |
debian.cupsys.txt |
Description:
|
Debian Security Advisory - CUPS allows remote users to abuse print services.
| | Homepage: | http://www.debian.org/security | | File Size: | 7917 | | Last Modified: | Nov 21 02:00:50 2000 |
| MD5 Checksum: | bd97619b8a79fb7145543b113e82d844 |
|
| /// File Name: |
debian.curl.txt |
Description:
|
Debian Security Advisory - The version of curl as distributed with Debian GNU/Linux 2.2 had a bug in the error logging code: when it created an error message it failed to check the size of the buffer allocated for storing the message. This could be exploited by the remote machine by returning an invalid response to a request from curl which overflows the error buffer and trick curl into executing arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 5474 | | Last Modified: | Oct 15 21:11:28 2000 |
| MD5 Checksum: | 690aa377305ba10a4e37111b66366214 |
|
| /// File Name: |
debian.cvsweb.txt |
Description:
|
Debian Security Advisory - The versions of cvsweb distributed in Debian GNU/Linux 2.1, are vulnerable to a remote shell exploit. An attacker with write access to the cvs repository can execute arbitrary code on the server, as the www-data user.
| | Homepage: | http://www.debian.org/security | | File Size: | 3793 | | Last Modified: | Jul 18 00:17:51 2000 |
| MD5 Checksum: | f3b0b63f1761afdf3d8e967b3ea384c5 |
|
| /// File Name: |
debian.dhcp.txt |
Description:
|
Debian Security Advisory - The versions of the ISC DHCP client in Debian 2.1 are vulnerable to a root exploit. A previous Debian security advisory addressed this issue with package versions 2.0b1pl6-0.3 and 2.0-3potato1, but ISC has released a newer patch since the original advisory. You should install the latest packages even if you upgraded when the last advisory was released.
| | Homepage: | http://www.debian.org/security | | File Size: | 7190 | | Last Modified: | Jul 28 20:32:21 2000 |
| MD5 Checksum: | 95e1ed9433a62ac57ffa2f3eef8a72ff |
|
| /// File Name: |
debian.dialog.txt |
Description:
|
Debian Security Advisory - Dialog creates lock files insecurely, making it susceptible to a symlink attack.
| | Homepage: | http://www.debian.org/security | | File Size: | 3406 | | Last Modified: | Dec 25 18:33:59 2000 |
| MD5 Checksum: | 90cae4bddc6fa6de0e87a248e6e138e2 |
|
| /// File Name: |
debian.dump.txt |
Description:
|
The version of dump that was distributed with Debian GNU/Linux 2.1 suffers from a problem with restoring symbolic links. The new version uses lchown instead of chown, fixing a possible security problem when restoring symlinks (a malicious user could use this to deliberately corrupt the ownership of important system files). Debian security website here.
| | File Size: | 2943 | | Last Modified: | Dec 2 23:04:38 1999 |
| MD5 Checksum: | 4edf808c4cd9c533f103be8ae03b2899 |
|
| /// File Name: |
debian.ed.txt |
Description:
|
Debian Security Advisory - GNU ed (the classic line editor tool) does not use temp files safely. This has been fixed in version 0.2-18.1.
| | Homepage: | http://www.debian.org/security | | File Size: | 3191 | | Last Modified: | Dec 2 23:18:28 2000 |
| MD5 Checksum: | 17b0f0335fe26dbbfcec4f6549e7fedf |
|
| /// File Name: |
debian.elvis-tiny.txt |
Description:
|
Debian Security Advisory - A tempfile bug was discovered in elvis-tiny prior to v1.4-10 which does not exist in the full size elvis.
| | Homepage: | http://www.debian.org/security | | File Size: | 4277 | | Last Modified: | Nov 25 09:46:11 2000 |
| MD5 Checksum: | 12fe2b7c8ad591e7732f2a5225374d48 |
|
| /// File Name: |
debian.eperl.txt |
Description:
|
Debian Security Advisory DSA-034-1 - When eperl is installed setuid root, it can switch to the UID/GID of the scripts owner. Although Debian doesn't ship the program setuid root, this is a useful feature which people may have activated locally. When the program is used as /usr/lib/cgi-bin/nph-eperl the bugs could lead into a remote vulnerability as well.
| | Homepage: | http://www.debian.org/security | | File Size: | 3977 | | Last Modified: | Mar 10 02:33:20 2001 |
| MD5 Checksum: | 5c9a8312917867c4723fd4cff47f3f34 |
|
| /// File Name: |
debian.ethereal.txt |
Description:
|
Debian Security Advisory - Hacksware reported a buffer overflow in the AFS packet parsing code in ethereal. Gerald Combs then found more overflows in the netbios and ntp decoding logic as well. An attacker can exploit those overflows by sending carefully crafted packets to a network that is being monitored by ethereal. This has been fixed in version 0.8.0-2potato and we recommend you upgrade your ethereal package immediately.
| | Homepage: | http://www.debian.org/security | | File Size: | 3512 | | Last Modified: | Dec 3 17:24:05 2000 |
| MD5 Checksum: | 54a569e03300753259ad5579a438c6d8 |
|
| /// File Name: |
debian.exmh.txt |
Description:
|
Debian Security Advisory DSA-022-1 - Exmh v2.2 and below used /tmp for storing temporary files. No checks were made to ensure that nobody placed a symlink with the same name in /tmp in the meantime and thus was vulnerable to a symlink attack.
| | Homepage: | http://www.debian.org/security | | File Size: | 3045 | | Last Modified: | Jan 26 20:37:01 2001 |
| MD5 Checksum: | 4cacd41df25253eabfe39dcd21dd05eb |
|
| /// File Name: |
debian.exuberant-ctags.txt |
Description:
|
Debian Security Advisory DSA-046-1 - The exuberant-ctags packages as distributed with Debian GNU/Linux 2.2 creates temporary files insecurely. This has been fixed in version 1:3.2.4-0.1 of the Debian package, and upstream version 3.5.
| | Homepage: | http://www.debian.org/security | | File Size: | 3428 | | Last Modified: | Apr 15 20:11:04 2001 |
| MD5 Checksum: | 88b7c9443117c24cf4fbbacc15f24090 |
|
| /// File Name: |
debian.fsh.txt |
Description:
|
Debian Security Advisory - Fsh, a tool to run remote commands over ssh, has a tempfile vulnerability which has been fixed in version 1.0.post.1-3potato.
| | Homepage: | http://www.debian.org/security | | File Size: | 3730 | | Last Modified: | Dec 3 00:20:05 2000 |
| MD5 Checksum: | eefb70a215428e9f9275bf5e878e931a |
|
| /// File Name: |
debian.gaim.txt |
Description:
|
Debian Security Advisory 158-1 - Gaim uses URL's retrieved from message in command-line execution of the web browser without filtering these URL's first. This issue has been fixed by the Gaim developers in version 0.59.1.
| | Homepage: | http://www.debian.org/security/ | | File Size: | 8551 | | Last Modified: | Aug 28 06:10:44 2002 |
| MD5 Checksum: | 00a491c02a913d2f8d050e08d75f4389 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
