OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
[SA10563] Debian update for zebra

From: Secunia Security Advisories (sec-advsecunia.com)
Date: Wed Jan 07 2004 - 04:13:24 CST

TITLE:
Debian update for zebra

SECUNIA ADVISORY ID:
SA10563

VERIFY ADVISORY:
http://www.secunia.com/advisories/10563/

CRITICAL:
Moderately critical

IMPACT:
DoS

WHERE:
From remote

OPERATING SYSTEM:
Debian GNU/Linux 3.0

DESCRIPTION:
Debian has issued updated packages for Zebra. These fix two
vulnerabilities, allowing malicious people and local users to cause a
Denial of Service.

An unspecified vulnerability exists in the Zebra telnet management
service, which can be exploited to crash the service if a Zebra
password has been enabled.

It is possible for malicious, local users to cause a Denial of
Service by sending spoofed messages on the kernel netlink interface.

SOLUTION:
Apply updated packages.

-- Debian GNU/Linux 3.0 alias woody --

Source archives:

http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a-5woody2.dsc
Size/MD5 checksum: 652 ba49d8a945be8d96c5a57c21258e89d8
http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a-5woody2.diff.gz
Size/MD5 checksum: 58156 bfb0f266ecc1c11f61d137352eac7d18
http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a.orig.tar.gz
Size/MD5 checksum: 1155814 d6725243ec245b77eb24b3ba7c0bf65c

Architecture independent components:

http://security.debian.org/pool/updates/main/z/zebra/zebra-doc_0.92a-5woody2_all.deb
Size/MD5 checksum: 270884 5fada3f95bf6e93ac2fe794b7fa8acd9

Alpha architecture:

http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a-5woody2_alpha.deb
Size/MD5 checksum: 1043754 72d2a900c962ed8aea065c9595f320e3

ARM architecture:

http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a-5woody2_arm.deb
Size/MD5 checksum: 795738 5cb5570d9308ec0270ec721066bc9a1a

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a-5woody2_i386.deb
Size/MD5 checksum: 746052 a24510c14cd5eff64df2a360be860da0

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a-5woody2_ia64.deb
Size/MD5 checksum: 1301076 3f15410f621a926dc9ce794bbde4fa2d

HP Precision architecture:

http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a-5woody2_hppa.deb
Size/MD5 checksum: 988824 7bf8c648d68d018d278d20ae733c527e

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a-5woody2_m68k.deb
Size/MD5 checksum: 679522 36cae2287e2df1b7f00d7d4bf742355c

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a-5woody2_mips.deb
Size/MD5 checksum: 1034258 a2e63c5ca1c9a30767f8ea799b0e0b1a

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a-5woody2_mipsel.deb
Size/MD5 checksum: 1032926 6b595928dce4c80eef44838b4ecb956f

PowerPC architecture:

http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a-5woody2_powerpc.deb
Size/MD5 checksum: 802570 06eb933a77f1882abaad84f91da015c9

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a-5woody2_s390.deb
Size/MD5 checksum: 769024 8607493ba453ce4561ffa9dc215e7291

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/z/zebra/zebra_0.92a-5woody2_sparc.deb
Size/MD5 checksum: 786378 09d61898b15b1a2fe26e173f09622789

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://www.secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://www.secunia.com/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------