OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Caldera Support Info (supinfocaldera.com)
Date: Fri Aug 24 2001 - 14:57:21 CDT

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    ______________________________________________________________________________
                       Caldera International, Inc. Security Advisory

    Subject: Linux - sendmail instant root exploit
    Advisory number: CSSA-2001-032.0
    Issue date: 2001, August 24
    Cross reference:
    ______________________________________________________________________________

    1. Problem Description

       Sendmail contains an input validation error, so local users may be
       able to write arbitrary data to process memory, possibly allowing the
       execution of code/commands with elevated privileges. This allows
       a local attacker to gain access to the root account.

    2. Vulnerable Versions

       System Package
       -----------------------------------------------------------
       OpenLinux 2.3 not vulnerable
       
       OpenLinux eServer 2.3.1 not vulnerable
       and OpenLinux eBuilder
       
       OpenLinux eDesktop 2.4 not vulnerable
       
       OpenLinux Server 3.1 All packages previous to
                                     sendmail-8.11.1-4
       
       OpenLinux Workstation 3.1 All packages previous to
                                     sendmail-8.11.1-4
       
    3. Solution

       Workaround

         none

       The proper solution is to upgrade to the latest packages.

    4. OpenLinux 2.3

        not vulnerable

    5. OpenLinux eServer 2.3.1 and OpenLinux eBuilder for ECential 3.0

        not vulnerable

    6. OpenLinux eDesktop 2.4

        not vulnerable

    7. OpenLinux 3.1 Server

        7.1 Location of Fixed Packages

           The upgrade packages can be found on Caldera's FTP site at:

           ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Server/current/RPMS

           The corresponding source code package can be found at:

           ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Server/current/SRPMS

       7.2 Verification

           b4fda9679325022adda547f1b3fae8dc RPMS/sendmail-8.11.1-4.i386.rpm
           f3eaef00ae6a7cb30635baf6ad13325a RPMS/sendmail-cf-8.11.1-4.i386.rpm
           1f17f7fa698748eb5bc6e55951948451 RPMS/sendmail-doc-8.11.1-4.i386.rpm
           c3f6af83c406174b325aa28af45c51ae SRPMS/sendmail-8.11.1-4.src.rpm
           

       7.3 Installing Fixed Packages

           Upgrade the affected packages with the following commands:

             rpm -Fvh sendmail-8.11.1-4.i386.rpm \
                  sendmail-cf-8.11.1-4.i386.rpm \
                  sendmail-doc-8.11.1-4.i386.rpm
             

    8. OpenLinux 3.1 Workstation

        8.1 Location of Fixed Packages

           The upgrade packages can be found on Caldera's FTP site at:

           ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Workstation/current/RPMS

           The corresponding source code package can be found at:

           ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Workstation/current/SRPMS

       8.2 Verification

           b4fda9679325022adda547f1b3fae8dc RPMS/sendmail-8.11.1-4.i386.rpm
           f3eaef00ae6a7cb30635baf6ad13325a RPMS/sendmail-cf-8.11.1-4.i386.rpm
           1f17f7fa698748eb5bc6e55951948451 RPMS/sendmail-doc-8.11.1-4.i386.rpm
           c3f6af83c406174b325aa28af45c51ae SRPMS/sendmail-8.11.1-4.src.rpm
           

       8.3 Installing Fixed Packages

           Upgrade the affected packages with the following commands:

             rpm -Fvh sendmail-8.11.1-4.i386.rpm \
                  sendmail-cf-8.11.1-4.i386.rpm \
                  sendmail-doc-8.11.1-4.i386.rpm
             
    9. References

       This and other Caldera security resources are located at:

       http://www.caldera.com/support/security/index.html

       This security fix closes Caldera's internal Problem Report 10420.

    10. Acknowledgements
       
       Caldera International wishes to thank Cade Cairns of SecurityFocus for
       spotting and reporting this bug.

    11. Disclaimer

       Caldera International, Inc. is not responsible for the misuse of
       any of the information we provide on this website and/or through our
       security advisories. Our advisories are a service to our customers
       intended to promote secure installation and use of Caldera OpenLinux.
    ______________________________________________________________________________
    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.0.6 (GNU/Linux)
    Comment: For info see http://www.gnupg.org

    iD8DBQE7hkR118sy83A/qfwRAhnIAKCIreoX1Q9YGckNoe+8OIV+nMQ7EgCgrTUb
    IVWxs0rkZez6V45KDWZ27A8=
    =4/NJ
    -----END PGP SIGNATURE-----

    ---------------------------------------------------------------------
    To unsubscribe, e-mail: announce-unsubscribelists.caldera.com
    For additional commands, e-mail: announce-helplists.caldera.com