Alerts This Week
Warning Icon 1 483
Alerts This Week
Warning Icon 1 483

Debian: DSA-1327 Critical: Gsambad Local File Truncation Exploit

debian
Calendar Grey July 1, 2007
Debian Logo
Ubuntu Security Notice USN-3721-1 highlights python2's insufficient input validation, creating potential security vulnerabilities. Patching is advised.
Steve Kemp from the Debian Security Audit project discovered that gsambad, a GTK+ configuration tool for samba, uses temporary files in an unsafe manner which may be exploited to...

Summary


For the stable distribution (etch) this problem has been fixed in
version 0.1.4-2etch1.

For the unstable distribution (sid) this problem will be fixed shortly.

We recommend that you upgrade your gsambad package.


Upgrade instructions
- --------------------wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.



Debian GNU/Linux 4.0 alias etch

Source archives:

Size/MD5 checksum: 24766 8ac63c3ecf53c7243f6f8675d3e2bb48
Size/MD5 checksum: 609 35dc69c7f48b6b327b782d310037eac6
Size/MD5 checksum: 385776 ced255218e024b43de6d42c9fc1653d2

alpha architecture (DEC Alpha)

Size/MD5 checksum: 109878 5a...

Read the Full Advisory

Severity
critical
Lowest
Low
Medium
High
Critical

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here