|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[SA14277] Debian toolchain-source "tpkg-*" Privilege Escalation
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Mon Feb 14 2005 - 10:51:34 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
Debian toolchain-source "tpkg-*" Privilege Escalation
SECUNIA ADVISORY ID:
SA14277
VERIFY ADVISORY:
http://secunia.com/advisories/14277/
CRITICAL:
Less critical
IMPACT:
Privilege escalation
WHERE:
Local system
OPERATING SYSTEM:
Debian GNU/Linux 3.0
http://secunia.com/product/143/
Debian GNU/Linux unstable alias sid
http://secunia.com/product/530/
DESCRIPTION:
Sean Finney has reported some vulnerabilities in toolchain-source,
which can be exploited by malicious, local users to perform certain
actions on a vulnerable system with escalated privileges.
The vulnerabilities are caused due to temporary files being created
insecurely. This can be exploited via symlink attacks to overwrite
arbitrary files with the privileges of the user running the "tpkg-*"
scripts.
SOLUTION:
Apply updated packages.
-- Debian GNU/Linux 3.0 alias woody --
Source archives:
http://security.debian.org/pool/updates/main/t/toolchain-source/toolchain-source_3.0.4-1woody1.dsc
Size/MD5 checksum: 532 a40a4bd817419cc8230a708920234140
http://security.debian.org/pool/updates/main/t/toolchain-source/toolchain-source_3.0.4-1woody1.tar.gz
Size/MD5 checksum: 25951549 f922410b108313705c4c32721403c93f
Architecture independent components:
http://security.debian.org/pool/updates/main/t/toolchain-source/toolchain-source_3.0.4-1woody1_all.deb
Size/MD5 checksum: 25962880 043b5163799735aa36cd163e86f26cfd
-- Debian GNU/Linux unstable alias sid --
Fixed in version 3.4-5.
PROVIDED AND/OR DISCOVERED BY:
Sean Finney
ORIGINAL ADVISORY:
http://www.debian.org/security/2005/dsa-679
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]