Sikkerhedsoplysninger / 2001 / Sikkerhedsoplysninger -- DSA-042-1 gnuserv

Debians sikkerhedsbulletin

DSA-042-1 gnuserv -- buffer-overløb, svag sikkerhed

Rapporteret den:

9. mar 2001

Berørte pakker:

gnuserv, xemacs21

Sårbar:

Ja

Referencer i sikkerhedsdatabaser:

I Bugtraq-databasen (hos SecurityFocus): BugTraq-id 2333.
I Mitres CVE-ordbog: CVE-2001-0191.

Yderligere oplysninger:

Klaus Frank har fundet en svaghed i den måde gnuserv behandlede forbindelse fra fjernbrugere. Gnuserv er en fjernstyrings-kontrolfacilitet til Emacsen, der er tilgængelige som separat program så vel som indeholdt i XEmacs21. Gnuserv har en buffer hvortil der blev udført utilstrækkelig overløbskontrol. Desværre påvirkede denne bruger adgangskontrol til gnuserv, der anvender et MIT-MAGIC-COOCKIE-baseret system. Det er muligt at få bufferen indeholdende cookie'en til at løbe over, og dermed ødelægge cookie-sammenligninger.

Gnuserv er baseret på emacsserver som er en del af GNU Emacs. Den er blevet skrevet helt om og der er ikke meget tilbage fra den gang, den var en del af GNU Emacs. Derfor lader det ikke til at versionerne af emacssserver i både Emacs19 og Emacs20 ikke til at være sårbare i forbindelse med denne fejl, de har ikke engang en MIT-MAGIC-COOKIE-baseret mekanisme. based mechanism.

Dette kunne give en fjernbruger adgang til at udføre kommander under UID'en på den bruger, der kørte gnuserv.

Rettet i:

Debian 2.2 (potato)

Kildekode:

http://security.debian.org/dists/stable/updates/main/source/gnuserv_2.1alpha-5.1.diff.gz

http://security.debian.org/dists/stable/updates/main/source/gnuserv_2.1alpha-5.1.dsc

http://security.debian.org/dists/stable/updates/main/source/gnuserv_2.1alpha.orig.tar.gz

http://security.debian.org/dists/stable/updates/main/source/xemacs21_21.1.10-5.diff.gz

http://security.debian.org/dists/stable/updates/main/source/xemacs21_21.1.10-5.dsc

http://security.debian.org/dists/stable/updates/main/source/xemacs21_21.1.10.orig.tar.gz

Arkitekturuafhængig komponent:

http://security.debian.org/dists/stable/updates/main/binary-i386/xemacs21-support_21.1.10-5_all.deb

http://security.debian.org/dists/stable/updates/main/binary-i386/xemacs21-supportel_21.1.10-5_all.deb

http://security.debian.org/dists/stable/updates/main/binary-i386/xemacs21_21.1.10-5_all.deb

alpha:

http://security.debian.org/dists/stable/updates/main/binary-alpha/gnuserv_2.1alpha-5.1_alpha.deb

http://security.debian.org/dists/stable/updates/main/binary-alpha/xemacs21-bin_21.1.10-5_alpha.deb

http://security.debian.org/dists/stable/updates/main/binary-alpha/xemacs21-mule-canna-wnn_21.1.10-5_alpha.deb

http://security.debian.org/dists/stable/updates/main/binary-alpha/xemacs21-mule_21.1.10-5_alpha.deb

http://security.debian.org/dists/stable/updates/main/binary-alpha/xemacs21-nomule_21.1.10-5_alpha.deb

arm:

http://security.debian.org/dists/stable/updates/main/binary-arm/gnuserv_2.1alpha-5.1_arm.deb

http://security.debian.org/dists/stable/updates/main/binary-arm/xemacs21-bin_21.1.10-5_arm.deb

http://security.debian.org/dists/stable/updates/main/binary-arm/xemacs21-mule-canna-wnn_21.1.10-5_arm.deb

http://security.debian.org/dists/stable/updates/main/binary-arm/xemacs21-mule_21.1.10-5_arm.deb

http://security.debian.org/dists/stable/updates/main/binary-arm/xemacs21-nomule_21.1.10-5_arm.deb

i386:

http://security.debian.org/dists/stable/updates/main/binary-i386/gnuserv_2.1alpha-5.1_i386.deb

http://security.debian.org/dists/stable/updates/main/binary-i386/xemacs21-bin_21.1.10-5_i386.deb

http://security.debian.org/dists/stable/updates/main/binary-i386/xemacs21-mule-canna-wnn_21.1.10-5_i386.deb

http://security.debian.org/dists/stable/updates/main/binary-i386/xemacs21-mule_21.1.10-5_i386.deb

http://security.debian.org/dists/stable/updates/main/binary-i386/xemacs21-nomule_21.1.10-5_i386.deb

m68k:

http://security.debian.org/dists/stable/updates/main/binary-m68k/gnuserv_2.1alpha-5.1_m68k.deb

http://security.debian.org/dists/stable/updates/main/binary-m68k/xemacs21-bin_21.1.10-5_m68k.deb

http://security.debian.org/dists/stable/updates/main/binary-m68k/xemacs21-mule-canna-wnn_21.1.10-5_m68k.deb

http://security.debian.org/dists/stable/updates/main/binary-m68k/xemacs21-mule_21.1.10-5_m68k.deb

http://security.debian.org/dists/stable/updates/main/binary-m68k/xemacs21-nomule_21.1.10-5_m68k.deb

powerpc:

http://security.debian.org/dists/stable/updates/main/binary-powerpc/gnuserv_2.1alpha-5.1_powerpc.deb

http://security.debian.org/dists/stable/updates/main/binary-powerpc/xemacs21-bin_21.1.10-5_powerpc.deb

http://security.debian.org/dists/stable/updates/main/binary-powerpc/xemacs21-mule-canna-wnn_21.1.10-5_powerpc.deb

http://security.debian.org/dists/stable/updates/main/binary-powerpc/xemacs21-mule_21.1.10-5_powerpc.deb

http://security.debian.org/dists/stable/updates/main/binary-powerpc/xemacs21-nomule_21.1.10-5_powerpc.deb

sparc:

http://security.debian.org/dists/stable/updates/main/binary-sparc/gnuserv_2.1alpha-5.1_sparc.deb

http://security.debian.org/dists/stable/updates/main/binary-sparc/xemacs21-bin_21.1.10-5_sparc.deb

http://security.debian.org/dists/stable/updates/main/binary-sparc/xemacs21-mule-canna-wnn_21.1.10-5_sparc.deb

http://security.debian.org/dists/stable/updates/main/binary-sparc/xemacs21-mule_21.1.10-5_sparc.deb

http://security.debian.org/dists/stable/updates/main/binary-sparc/xemacs21-nomule_21.1.10-5_sparc.deb