OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
[SA14224] Debian update for sympa

From: Secunia Security Advisories (sec-advsecunia.com)
Date: Fri Feb 11 2005 - 11:08:10 CST

TITLE:
Debian update for sympa

SECUNIA ADVISORY ID:
SA14224

VERIFY ADVISORY:
http://secunia.com/advisories/14224/

CRITICAL:
Less critical

IMPACT:
Privilege escalation

WHERE:
Local system

OPERATING SYSTEM:
Debian GNU/Linux unstable alias sid
http://secunia.com/product/530/
Debian GNU/Linux 3.0
http://secunia.com/product/143/

DESCRIPTION:
Debian has issued an update for sympa. This fixes a vulnerability,
which can be exploited by malicious, local users to gain escalated
privileges.

For more information:
SA14217

SOLUTION:
Apply updated packages.

-- Debian GNU/Linux 3.0 alias woody --

Source archives:

http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3-3woody2.dsc
Size/MD5 checksum: 601 757b8a0b0b6dde6e1b4626768e98aaaf
http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3-3woody2.diff.gz
Size/MD5 checksum: 44518 1bcea87b271163637a68aae20e1e14f9
http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3.orig.tar.gz
Size/MD5 checksum: 1457710 59776560bfb6c124c5a25129127383be

Architecture independent components:

http://security.debian.org/pool/updates/main/s/sympa/wwsympa_3.3.3-3woody2_all.deb
Size/MD5 checksum: 349648 0933a74b3e7b529bc3ccfff1e44fd310

Alpha architecture:

http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3-3woody2_alpha.deb
Size/MD5 checksum: 636122 bcf354d30dd2bda45baeebb512ac84f2

ARM architecture:

http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3-3woody2_arm.deb
Size/MD5 checksum: 634994 3936100bb555bc3f0c67cc4476138d46

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3-3woody2_i386.deb
Size/MD5 checksum: 634982 bb63c09723a848b727d95994d9804ee9

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3-3woody2_ia64.deb
Size/MD5 checksum: 637714 2f88784e6c5a9cffdb5a75c56e08ec6d

HP Precision architecture:

http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3-3woody2_hppa.deb
Size/MD5 checksum: 635516 9808c2d9c7e812141c6bb21c63694903

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3-3woody2_m68k.deb
Size/MD5 checksum: 635186 0fa581c1fc424991e18079e09dec910d

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3-3woody2_mips.deb
Size/MD5 checksum: 634980 b7cba06ff5e119967c0568392797d78c

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3-3woody2_mipsel.deb
Size/MD5 checksum: 635016 fbf75e6f39246a03007e0627b35ea8b0

PowerPC architecture:

http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3-3woody2_powerpc.deb
Size/MD5 checksum: 634678 061911261f49ddd13918c1af45d2738b

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3-3woody2_s390.deb
Size/MD5 checksum: 635834 f127573347d01e3cd5daedb6235462b5

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/s/sympa/sympa_3.3.3-3woody2_sparc.deb
Size/MD5 checksum: 639518 c86008d13499edddeaf9f5f5daf5a667

-- Debian GNU/Linux unstable alias sid --

The vulnerability will reportedly be fixed soon.

ORIGINAL ADVISORY:
http://www.debian.org/security/2005/dsa-677

OTHER REFERENCES:
SA14217:
http://secunia.com/advisories/14217/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------