LinuxSecurity.com 		Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
What is the most important Linux security technology?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Securitydistro
Latest Newsletters
Linux Advisory Watch: March 14th, 2010
Linux Advisory Watch: March 6th, 2010
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Linux Advisory Watch: February 5th, 2010 Print E-mail
User Rating:      How can I rate this item?
Posted by Benjamin D. Thomas   
Linux Advisory Watch Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headline. Vulnerabilities affect nearly every vendor virtually every week, so be sure to read through to find the updates your distributor have made available. LinuxSecurity.com Feature Extras:

Measuring Security IT Success - In a time where budgets are constrained and Internet threats are on the rise, it is important for organizations to invest in network security applications that will not only provide them with powerful functionality but also a rapid return on investment.

In most organizations IT success is generally calculated through effectiveness, resource usage and, most importantly, how quickly the investment can be returned. To correctly quantify the ROI of information technology, organizations usually measure cost savings and increased profits since the initial implementation. Additionally, ROI can also be affected based on the overall impact the investment has on employee productivity and overall work environment of the company.

Buffer Overflow Basics - A buffer overflow occurs when a program or process tries to store more data in a temporary data storage area than it was intended to hold. Since buffers are created to contain a finite amount of data, the extra information can overflow into adjacent buffers, corrupting or overwriting the valid data held in them.

Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headline.

  EnGarde Secure Community 3.0.22 Now Available! (Dec 9)
 

Guardian Digital is happy to announce the release of EnGarde Secure Community 3.0.22 (Version 3.0, Release 22). This release includes many updated packages and bug fixes and some feature enhancements to the EnGarde Secure Linux Installer and the SELinux policy.

http://www.linuxsecurity.com/content/view/145668
  Debian: chrony denial of service (Feb 4)
 

Several vulnerabilities have been discovered in chrony, a pair of programs which are used to maintain the accuracy of the system clock on a computer. This issues are similar to the NTP security flaw CVE-2009-3563. The Common Vulnerabilities and Exposures project identifies the following problems:

http://www.linuxsecurity.com/content/view/151611
  Debian: squid/squid3 denial of service (Feb 4)
 

Two denial of service vulnerabilities have been discovered in squid and squid3, a web proxy. The Common Vulnerabilities and Exposures project identifies the following problems:

http://www.linuxsecurity.com/content/view/151598
  Debian: trac-git package fixes regression (Feb 3)
 

The trac-git package released in DSA-1990-1 had a wrong dependency that could not be satisfied in Debian stable. This update corrects this problem. For reference, the original advisory text is provided below.

http://www.linuxsecurity.com/content/view/151597
  Debian: trac-git code execution (Feb 3)
 

Stefan Goebel discovered that the Debian version of trac-git, the Git add-on for the Trac issue tracking system, contains a flaw which enables attackers to execute code on the web server running trac-git by sending crafted HTTP queries.

http://www.linuxsecurity.com/content/view/151595
  Debian: fuse denial of service (Feb 2)
 

Dan Rosenberg discovered a race condition in FUSE, a Filesystem in USErspace. A local attacker, with access to use FUSE, could unmount arbitrary locations, leading to a denial of service.

http://www.linuxsecurity.com/content/view/151587
  Debian: qt4-x11 several vulnerabilities (Feb 2)
 

Several vulnerabilities have been discovered in qt4-x11, a cross-platform C++ application framework. The Common Vulnerabilities and Exposures project identifies the following problems:

http://www.linuxsecurity.com/content/view/151583
  Debian: moodle several vulnerabilities (Feb 2)
 

Several vulnerabilities have been discovered in Moodle, an online course management system. The Common Vulnerabilities and Exposures project identifies the following problems

http://www.linuxsecurity.com/content/view/151574
  Debian: lighttpd denial of service (Feb 2)
 

Li Ming discovered that lighttpd, a small and fast webserver with minimal memory footprint, is vulnerable to a denial of service attack due to bad memory handling. Slowly sending very small chunks of request data causes lighttpd to allocate new buffers for each read instead of appending to old ones. An attacker can abuse this behaviour to cause denial of service conditions due to memory exhaustion.

http://www.linuxsecurity.com/content/view/151570
  Debian: sendmail SSL certificate (Jan 31)
 

It was discovered that sendmail, a Mail Transport Agent, does not properly handle a '\0' character in a Common Name (CN) field of an X.509 certificate. This allows an attacker to spoof arbitrary SSL-based SMTP servers via a crafted server certificate issued by a legitimate Certification Authority, and to bypass intended access restrictions via a crafted client certificate issued by a legitimate Certification Authority.

http://www.linuxsecurity.com/content/view/151560
  Debian: Wireshark several vulnerabilities (Jan 31)
 

Several remote vulnerabilities have been discovered in the Wireshark network traffic analyzer, which may lead to the execution of arbitrary code or denial of service. The Common Vulnerabilities and Exposures project identifies the following problems:

http://www.linuxsecurity.com/content/view/151559
  Debian: git-core build failure (Jan 31)
 

A bug in git-core caused the security update in DSA 1841 to fail to build on a number of architectures Debian supports. This update corrects the bug and releases builds for all supported architectures. The original advisory is quoted in full below for reference.

http://www.linuxsecurity.com/content/view/151558
  Debian: libxerces2-java denial of service (Jan 30)
 

It was discovered that libxerces2-java, a validating XML parser for Java, does not properly process malformed XML files. This vulnerability could allow an attacker to cause a denial of service while parsing a malformed XML file.

http://www.linuxsecurity.com/content/view/151557
  Debian: hybserv denial of service (Jan 29)
 

Julien Cristau discovered that hybserv, a daemon running IRC services for IRCD-Hybrid, is prone to a denial of service attack via the commands option.

http://www.linuxsecurity.com/content/view/151548
  Debian: pdns-recursor cache poisoning (Jan 28)
 

It was discovered that pdns-recursor, the PowerDNS recursive name server, contains a cache poisoning vulnerability which may allow attackers to trick the server into serving incorrect DNS data (CVE-2009-4010).

http://www.linuxsecurity.com/content/view/151538
  Debian: maildrop regression (Jan 28)
 

The latest DSA for maildrop introduced two regressions. The maildrop program stopped working when invoked as a non-root user, such as with postfix. Also, the lenny version dropped a dependency on the courier-authlib package.

http://www.linuxsecurity.com/content/view/151537
  Debian: maildrop privilege escalation (Jan 28)
 

Christoph Anton Mitterer discovered that maildrop, a mail delivery agent with filtering abilities, is prone to a privilege escalation issue that grants a user root group privileges.

http://www.linuxsecurity.com/content/view/151527
  Debian: ircd-hybrid/ircd-ratbox arbitrary code execution (Jan 27)
 

ircd-hybrid/ircd-ratbox integer underflow/denial of service vulnerability

http://www.linuxsecurity.com/content/view/151525
  Debian: lintian multiple vulnerabilities (Jan 27)
 

Multiple vulnerabilities have been discovered in lintian, a Debian package checker. The following Common Vulnerabilities and Exposures project ids have been assigned to identify them

http://www.linuxsecurity.com/content/view/151521
  Mandriva: rootcerts (Feb 4)
 

It was brought to our attention by Ludwig Nussel at SUSE the md5 collision certificate should not be included. This update removes the offending certificate. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The mozilla nss library has consequently been rebuilt to pickup these changes and are also being provided.

http://www.linuxsecurity.com/content/view/151609
  Mandriva: wireshark (Feb 2)
 

This advisory updates Wireshark to the version 1.0.11, which fixes the following vulnerabilities: The SMB and SMB2 dissectors could crash (CVE-2009-4377). The Infiniband dissector could crash on some platforms (CVE-2009-2563). Several buffer overflows were discovered and fixed in the LWRES dissector.

http://www.linuxsecurity.com/content/view/151588
  Mandriva: kernel (Feb 1)
 

Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel: Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request. (CVE-2009-3080) The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read. (CVE-2009-4005) An issue was discovered in 2.6.32.x kernels, which sets unsecure permission for devtmpfs file system by default. (CVE-2010-0299) Additionally, it was added support for Atheros AR2427 Wireless Network Adapter. To update your kernel, please follow the directions located at: http://www.mandriva.com/en/security/kernelupdate

http://www.linuxsecurity.com/content/view/151568
  Mandriva: mailcap (Feb 1)
 

It was discovered that the mailcap package needed by firefox wasn't provided with MDVA-2010:015. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. This advisory addresses these problems.

http://www.linuxsecurity.com/content/view/151567
  Mandriva: gtk (Feb 1)
 

gtk+ 2.0 was not handling correctly input method in client-side window mode. This could lead to applications crash, inkscape is a good example of crash. This updates fixes this issues and upgrades gtk+2.0 to latest stable release (2.18.6), which includes stability fixes for various applications, including gnome-panel.

http://www.linuxsecurity.com/content/view/151562
  Mandriva: rootcerts (Jan 28)
 

The rootcerts package was added in Mandriva in 2005 and was meant to be updated when nessesary. The provided rootcerts packages has been upgraded using the latest certdata.txt file from the mozilla cvs repository, as of 2009/12/03. In Mandriva a number of additional CA root certificates has been added such as ICP-Brasil (Brazil government CA), cacert.org, IGC/A CA (French government CA). The IGC/A CA one was recently added upstream in the mozilla certdata.txt file. The rootcerts package provides the /etc/pki/tls/certs/ca-bundle.crt file which most sofwares in Mandriva, and where appliable is sharing such as KDE, curl, pidgin, neon, and more. The mozilla nss library has consequently been rebuilt to pickup these changes and are also being provided.

http://www.linuxsecurity.com/content/view/151539
  Mandriva: evolution (Jan 27)
 

Evolution could crash when adding new task to a task list. Those packages fixes this issue and updates Evolution to the latest stable release, bringing performance and stability fixes, as well as additional translations.

http://www.linuxsecurity.com/content/view/151526
  Mandriva: webkit (Jan 27)
 

This update brings a new stable version of webkitgtk, and solves the problem with processors without the SSE2 instruction set. It is easy to see if you are suffering from this bug, just try to open some webpage on epiphany Web broswser, it will crash with old webkit version.

http://www.linuxsecurity.com/content/view/151523
  Mandriva: urpmi (Jan 27)
 

There was a small typo in the french translation. The update packages addresses this issue.

http://www.linuxsecurity.com/content/view/151522
  Mandriva: mmc Enterprise Server 5.0 (Jan 27)
 

This is a bundle of MDS related packages that fixes numerous bugs.

http://www.linuxsecurity.com/content/view/151520
  Mandriva: pciutils 2010.0 (Jan 27)
 

This update fixes unaligned access in libpci on some rare hardware which ended in all programs using libldetect to fail with draksound (Bug #56772).

http://www.linuxsecurity.com/content/view/151519
  Mandriva: urpmi 2010.0 (Jan 27)
 

This update a bug in urpmi which prevented rpmdrake to install packages a second time (bug #54842)

http://www.linuxsecurity.com/content/view/151518
  Mandriva: kdelibs4 2010.0 (Jan 27)
 

Multiple vulnerabilities was discovered and corrected in kdelibs4

http://www.linuxsecurity.com/content/view/151516
  Mandriva: kdelibs4 2009.1 (Jan 27)
 

Multiple vulnerabilities was discovered and corrected in kdelibs4

http://www.linuxsecurity.com/content/view/151515
  RedHat: RHSA-2010:0076-01 kernel security and bug fix update (Feb 2)
 

Updated kernel packages that fix multiple security issues and three bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team.

http://www.linuxsecurity.com/content/view/151582
  RedHat: RHSA-2010:0079-01 kernel security and bug fix update (Feb 2)
 

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5.2 Extended Update Support. This update has been rated as having important security impact by the Red Hat Security Response Team.

http://www.linuxsecurity.com/content/view/151581
  Ubuntu: Samba vulnerability (Jan 28)
 

Ronald Volgers discovered that the mount.cifs utility, when installed as a setuid program, suffered from a race condition when verifying user permissions. A local attacker could trick samba into mounting over arbitrary locations, leading to a root privilege escalation.

http://www.linuxsecurity.com/content/view/151536
  Pardus: [UPDATE] Nss: TLS Implementation (Feb 4)
 

A serious vulnerability was found in TLS/SSLv3 protocol as implemented in nss, which can be used by man-in-the-middle attackers to send arbitrary requests to the server as if legitimate user. [UPDATE] The issue is fixed in Pardus 2008

http://www.linuxsecurity.com/content/view/151599
  Pardus: [UPDATE] Sun Java: Multiple (Feb 4)
 

Multiple vulnerabilities have been reported in Sun Java, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), or compromise a user's system. [UPDATE] The issue is fixed in Pardus 2008

http://www.linuxsecurity.com/content/view/151600
  Pardus: [UPDATE] Ruby:Terminal Escape (Feb 4)
 

A weakness has been reported in Ruby, which can be exploited by malicious people to manipulate certain data. [UPDATE] The issue is fixed in Pardus 2008

http://www.linuxsecurity.com/content/view/151601
  Pardus: [UPDATE] Sqlite: Information (Feb 4)
 

A vulnerability has been found in sqlite, which can be exploited by malicious people to gather deleted information on sqlite database. [UPDATE] The issue is fixed in Pardus 2008

http://www.linuxsecurity.com/content/view/151602
  Pardus: Kernel: Denial of Service (Feb 2)
 

A vulnerability has been fixed in kernel, which can be used by malicious to cause denial of service. NOTE: This advisory is a correction for PLSA-2010-25. It wrongly stated that map/mmap issues affected Pardus. However, it is not known whether these issues are real security issues, so patches for these issues were not applied. These issues will be investigated further.

http://www.linuxsecurity.com/content/view/151580
  Pardus: Postgresql: Buffer Overflow (Feb 2)
 

A vulnerability has been fixed in Postgresql, which can be exploited by malicious people to cause denial of service via application crash.

http://www.linuxsecurity.com/content/view/151575
  Pardus: Samba: Privilege Escalation (Feb 2)
 

A security issue has been fixed in Samba, which can be exploited by malicious, local users to disclose potentially sensitive information and potentially gain escalated privileges.

http://www.linuxsecurity.com/content/view/151576
  Pardus: Kernel: Multiple Vulnerabilities (Feb 2)
 

Multiple vulnerabilities have been fixed in kernel, which can be exploited by malicious people to cause denial of service.

http://www.linuxsecurity.com/content/view/151577
  Pardus: Wireshark: Buffer Overflow (Feb 2)
 

Multiple vulnerabilities have been fixed in Wireshark, which can be exploited by malicious people to cause a denial of service.

http://www.linuxsecurity.com/content/view/151578
  Pardus: Fuse: Privilege Escalation (Feb 2)
 

A security issue has been fixed in Fuse, which can be exploited by malicious, local users to disclose potentially sensitive information and potentially gain escalated privileges.

http://www.linuxsecurity.com/content/view/151579
  Pardus: Ruby:Terminal Escape Sequences (Jan 29)
 

A weakness has been reported in Ruby, which can be exploited by malicious people to manipulate certain data.

http://www.linuxsecurity.com/content/view/151540
  Pardus: Sqlite: Information Disclosure (Jan 29)
 

A vulnerability has been found in sqlite, which can be exploited by malicious people to gather deleted information on sqlite database.

http://www.linuxsecurity.com/content/view/151541
  Pardus: Nss: TLS Implementation MITM Attack (Jan 29)
 

A serious vulnerability was found in TLS/SSLv3 protocol as implemented in nss, which can be used by man-in-the-middle attackers to send arbitrary requests to the server as if legitimate user.

http://www.linuxsecurity.com/content/view/151542
  Pardus: Systemtap: " stap-server" (Jan 29)
 

A vulnerability has been reported in SystemTap, which can be exploited by malicious users to compromise a vulnerable system.

http://www.linuxsecurity.com/content/view/151543
  Pardus: Sun Java: Multiple Vulnerabilities (Jan 29)
 

Multiple vulnerabilities have been reported in Sun Java, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), or compromise a user's system.

http://www.linuxsecurity.com/content/view/151544

Only registered users can write comments.
Please login or register.

Powered by AkoComment!
 
< Prev   Next >
    
Partner:

 
Latest Features
Introduction: Buffer Overflow Vulnerabilities
FTP Attack Case Study Part II: the Lessons
Network Security Audit (Part II)
Measuring Security IT Success
Buffer Overflow Basics
Network Intrusion Prevention Systems: When They're Valuable, and When They're Not
Hacks From Pax: Network Server Monitoring With Nmap
Yesterday's Edition
Google Chrome to do away with unique IDs
How To Harden PHP5 With Suhosin On CentOS 5.4
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2010 Guardian Digital, Inc. All rights reserved.