Debian Security Advisory
DSA-1022-1 storebackup -- several vulnerabilities
- Date Reported:
- 04 Apr 2006
- Affected Packages:
- Security database references:
- In the Debian bugtracking system: Bug 332434.
In Mitre's CVE dictionary: CVE-2005-3146, CVE-2005-3147, CVE-2005-3148.
- More information:
Several vulnerabilities have been discovered in the backup utility storebackup. The Common Vulnerabilities and Exposures project identifies the following problems:
Storebackup creates a temporary file predictably, which can be exploited to overwrite arbitrary files on the system with a symlink attack.
The backup root directory wasn't created with fixed permissions, which may lead to inproper permissions if the umask is too lax.
The user and group rights of symlinks are set incorrectly when making or restoring a backup, which may leak sensitive data.
The old stable distribution (woody) doesn't contain storebackup packages.
For the stable distribution (sarge) these problems have been fixed in version 1.18.4-2sarge1.
For the unstable distribution (sid) these problems have been fixed in version 1.19-2.
We recommend that you upgrade your storebackup package.
- Fixed in:
Debian GNU/Linux 3.1 (sarge)
- Architecture-independent component:
MD5 checksums of the listed files are available in the original advisory.