Debian: Critical Security Advisories Addressing Multiple Risks

Oct 19, 2007 •

4 - 7 min read

This week advisories were released for wesnoth, libprcsecgss, dhcp, zoph, hplip, tk, openssl, SKK, Balsa, util-linux, tar, phpMyAdmin, and java. The distributors include Debian, Fedora, Gentoo, Mandriva, Red Hat, and Ubuntu.

Linux+DVD Magazine Our magazine is read by professional network and database administrators, system programmers, webmasters and all those who believe in the power of Open Source software. The majority of our readers is between 15 and 40 years old. They are interested in current news from the Linux world, upcoming projects etc.

In each issue you can find information concerning typical use of Linux: safety, databases, multimedia, scientific tools, entertainment, programming, e-mail, news and desktop environments.

LinuxSecurity.com Feature Extras:

Review: Ruby by Example - Learning a new language cannot be complete without a few 'real world' examples. 'Hello world!'s and fibonacci sequences are always nice as an introduction to certain aspects of programming, but soon or later you crave something meatier to chew on. 'Ruby by Example: Concepts and Code' by Kevin C. Baird provides a wealth of knowledge via general to specialized examples of the dynamic object oriented programming language, Ruby. Want to build an mp3 playlist processor? How about parse out secret codes from 'Moby Dick'? Read on!

Take advantage of our Linux Security discussion list! This mailing list is for general security-related questions and comments. To subscribe send an e-mail to This email address is being protected from spambots. You need JavaScript enabled to view it. with "subscribe" as the subject.

Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headline.

	Debian: New Linux 2.6.18 packages fix several vulnerabilities
	12th, October, 2007 Several local vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems... advisories/debian/debian-new-linux-2618-packages-fix-several-vulnerabilities-45410

	Debian: New wesnoth packages fix denial of service
	15th, October, 2007 A problem has been discovered in the processing of chat messages. Overly long messages are truncated by the server to a fixed length, without paying attention to the multibyte characters. This leads to invalid UTF-8 on clients and causes an uncaught exception. advisories/debian/debian-new-wesnoth-packages-fix-denial-of-service-23140

	Debian: New wesnoth packages fix denial of service
	15th, October, 2007 A problem has been discovered in the processing of chat messages. Overly long messages are truncated by the server to a fixed length, without paying attention to the multibyte characters. This leads to invalid UTF-8 on clients and causes an uncaught exception. advisories/debian/debian-new-wesnoth-packages-fix-denial-of-service-23140

	Debian: New librpcsecgss packages fix arbitrary code execution
	15th, October, 2007 It has been discovered that the original patch for a buffer overflow in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (CVE-2007-3999, DSA-1368-1) was insufficient to protect from arbitrary code execution in some environments. advisories/debian/debian-new-librpcsecgss-packages-fix-arbitrary-code-execution-86263

	Debian: New dhcp packages fix arbitrary code execution
	18th, October, 2007 It was discovered that dhcp, a DHCP server for automatic IP address assignment, didn't correctly allocate space for network replies. This could potentially allow a malicious DHCP client to execute arbitary code upon the DHCP server. advisories/debian/debian-new-dhcp-packages-fix-arbitrary-code-execution-36384

	Debian: New zoph packages fix SQL injection
	18th, October, 2007 It was discovered that zoph, a web based photo management system, performs insufficient input sanitising, which allows SQL injection. advisories/debian/debian-new-zoph-packages-fix-sql-injection-59021

	Fedora 7 Update: hplip-1.7.4a-6.fc7
	12th, October, 2007 This update fixes a vulnerability in the hpssd daemon. advisories/fedora/fedora-7-update-hplip-174a-6fc7-17-28-00-130050

	Fedora 7 Update: tk-8.4.13-6.fc7
	17th, October, 2007 A buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl (Tcl/Tk) before 8.4.16 allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first. advisories/fedora/fedora-7-update-tk-8413-6fc7-22-31-00-130126

	Fedora 7 Update: openssl-0.9.8b-15.fc7
	17th, October, 2007 This is important security update: fix an off-by-one in SSL_get_shared_ciphers and fix out of order DTLS fragments buffer overflow. advisories/fedora/fedora-7-update-openssl-098b-15fc7-22-31-00-130128

	Gentoo: SKK Tools Insecure temporary file creation
	12th, October, 2007 SKK insecurely creates temporary files to a location in the form $TMPDIR/skkdic$PID.{pag,dir,db}, where $PID is the process ID.

	Gentoo: Balsa Buffer overflow
	16th, October, 2007 Balsa, an email client, is vulnerable to a buffer overflow allowing for the user-assisted execution of arbitrary code.

	Gentoo: util-linux Local privilege escalation
	18th, October, 2007 The mount and umount programs might allow local attackers to gain root privileges.

	Mandriva: Updated kernel packages fix multiple
	15th, October, 2007 Several vulnerabilities were discovered and corrected in the Linux 2.6 kernel.

	Mandriva: Updated kernel packages fix multiple
	15th, October, 2007 Several vulnerabilities were discovered and corrected in the Linux 2.6 kernel.

	Mandriva: Updated tar packages prevent buffer overflow
	16th, October, 2007 A buffer overflow in GNU tar has unspecified attack vectors and impact, resulting in a crashing stack. Updated packages fix this issue.

	Mandriva: Updated util-linux packages fix vulnerability
	16th, October, 2007 The mount and umount programs in util-linux called the setuid() and setgid() functions in the wrong order and did not check the return values, which could allow attackers to grain privileges via helper applications such as mount.nfs. Updated packages have been patched to fix this issue.

	Mandriva: Updated phpMyAdmin packages fix multiple
	17th, October, 2007 A number of vulnerabilities and security-related issues have been fixed in phpMyAdmin versions since the 2.9.1.1 release. This update provides version 2.11.1.2 which is the latest stable release of phpMyAdmin.

	RedHat: Important: java-1.5.0-sun security update
	12th, October, 2007 Updated java-1.5.0-sun packages that correct several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having important security impact by the Red Hat Security Response Team. advisories/red-hat/redhat-important-java-150-sun-security-update-RHSA-2007-0963-01

	RedHat: Important: openssl security update
	12th, October, 2007 Updated OpenSSL packages that correct several security issues are now available for Red Hat Enterprise 5. This update has been rated as having important security impact by the Red Hat Security Response Team. advisories/red-hat/redhat-important-openssl-security-update-98001

	RedHat: Moderate: java-1.5.0-bea security update
	16th, October, 2007 Updated java-1.5.0-bea packages that correct several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having moderate security impact by the Red Hat Security Response Team. advisories/red-hat/redhat-moderate-java-150-bea-security-update-42238

	Ubuntu: hplip vulnerability
	12th, October, 2007 It was discovered that the hpssd tool of hplip did not correctly handle shell meta-characters. A local attacker could exploit this to execute arbitrary commands as the hplip user. advisories/ubuntu/ubuntu-hplip-vulnerability