Sikkerhedsoplysninger / 2001 / Sikkerhedsoplysninger -- DSA-023-1 inn2

Debians sikkerhedsbulletin

DSA-023-1 inn2 -- lokale sårbarheder ved midlertidige filer

Rapporteret den:

26. jan 2001

Berørte pakker:

inn2

Sårbar:

Ja

Referencer i sikkerhedsdatabaser:

I Mitres CVE-ordbog: CVE-2001-0361.

Yderligere oplysninger:

• Folkene hos WireX har fundet flere potentielle problemer ved brugen af midlertidige filer i programmer der følger med INN2. Nogle af dem kan kun resultere i sårbarhed overfor symlink-angreb hvis den midlertidige mappe er sat til /tmp eller /var/tmp, hvilket er tilfældet på mange installationer, i hvert fald med Debian-pakker. En angriber kunne overskrive en hvilken som helst fil ejet af news-systemadministratoren, f.eks. ejet af news.news.
• Michal Zalewski fandt en mulighed for buffer-overløbsangreb i forbindelse med annulleringsmeddelelser (cancel) og kontrollen af disse. Denne fejl viste sig kun hvis "verifycancels" var slået til i inn.conf, hvilket er ikke standard og frarådes af "opstrøms"-vedligeholderne.
• Andi Kleen fandt en fejl i INN2 der får innd til at gå ned ved 2-byte-headere. Der er risiko for at dette kan udnyttes via uucp.

Vi anbefaler at du omgående opgraderer dine inn2-pakker.

Rettet i:

Debian 2.2 (potato)

Kildekode:

http://security.debian.org/dists/stable/updates/main/source/inn2_2.2.2.2000.01.31-4.1.diff.gz

http://security.debian.org/dists/stable/updates/main/source/inn2_2.2.2.2000.01.31-4.1.dsc

http://security.debian.org/dists/stable/updates/main/source/inn2_2.2.2.2000.01.31.orig.tar.gz

alpha:

http://security.debian.org/dists/stable/updates/main/binary-alpha/inn2-dev_2.2.2.2000.01.31-4.1_alpha.deb

http://security.debian.org/dists/stable/updates/main/binary-alpha/inn2-inews_2.2.2.2000.01.31-4.1_alpha.deb

http://security.debian.org/dists/stable/updates/main/binary-alpha/inn2_2.2.2.2000.01.31-4.1_alpha.deb

arm:

http://security.debian.org/dists/stable/updates/main/binary-arm/inn2-dev_2.2.2.2000.01.31-4.1_arm.deb

http://security.debian.org/dists/stable/updates/main/binary-arm/inn2-inews_2.2.2.2000.01.31-4.1_arm.deb

http://security.debian.org/dists/stable/updates/main/binary-arm/inn2_2.2.2.2000.01.31-4.1_arm.deb

i386:

http://security.debian.org/dists/stable/updates/main/binary-i386/inn2-dev_2.2.2.2000.01.31-4.1_i386.deb

http://security.debian.org/dists/stable/updates/main/binary-i386/inn2-inews_2.2.2.2000.01.31-4.1_i386.deb

http://security.debian.org/dists/stable/updates/main/binary-i386/inn2_2.2.2.2000.01.31-4.1_i386.deb

m68k:

http://security.debian.org/dists/stable/updates/main/binary-m68k/inn2-dev_2.2.2.2000.01.31-4.1_m68k.deb

http://security.debian.org/dists/stable/updates/main/binary-m68k/inn2-inews_2.2.2.2000.01.31-4.1_m68k.deb

http://security.debian.org/dists/stable/updates/main/binary-m68k/inn2_2.2.2.2000.01.31-4.1_m68k.deb

powerpc:

http://security.debian.org/dists/stable/updates/main/binary-powerpc/inn2-dev_2.2.2.2000.01.31-4.1_powerpc.deb

http://security.debian.org/dists/stable/updates/main/binary-powerpc/inn2-inews_2.2.2.2000.01.31-4.1_powerpc.deb

http://security.debian.org/dists/stable/updates/main/binary-powerpc/inn2_2.2.2.2000.01.31-4.1_powerpc.deb

sparc:

http://security.debian.org/dists/stable/updates/main/binary-sparc/inn2-dev_2.2.2.2000.01.31-4.1_sparc.deb

http://security.debian.org/dists/stable/updates/main/binary-sparc/inn2-inews_2.2.2.2000.01.31-4.1_sparc.deb

http://security.debian.org/dists/stable/updates/main/binary-sparc/inn2_2.2.2.2000.01.31-4.1_sparc.deb