| |||||||||||||
Trustix alert TSLSA-2005-0062 (multi)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Trustix Secure Linux Security Advisory #2005-0062 Package names: mod_php4, ncftp, php4, sudo Summary: Multiple vulnerabilities Date: 2005-11-04 Affected versions: Trustix Secure Linux 2.2 Trustix Secure Linux 3.0 Trustix Operating System - Enterprise Server 2 - -------------------------------------------------------------------------- Package description: mod_php4 PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled web page with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. The mod_php module enables the Apache web server to understand and process the embedded PHP language in web pages. ncftp Ncftp is an improved FTP client. Ncftp's improvements include support for command line editing, command histories, recursive gets, automatic anonymous logins and more. php4 PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled web page with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. The mod_php module enables the Apache web server to understand and process the embedded PHP language in web pages. sudo Sudo (superuser do) allows a system administrator to give certain users (or groups of users) the ability to run some (or all) commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict what commands a user may run on a per-host basis, copious logging of each command (providing a clear audit trail of who did what), a configurable timeout of the sudo command, and the ability to use the same configuration file (sudoers) on many different machines. Problem description: mod_php4 < TSEL 2 > - New upstream and Multiple Security Fixes. - SECURITY Fix: Updated to the latest pcrelib to fix a possible integer overflow vulnerability announced in CVE-2005-2491. - Fixed a Cross Site Scripting (XSS) vulnerability in phpinfo(). - Fixed multiple safe_mode/open_basedir bypass vulnerabilities in ext/curl and ext/gd. - Fixed a possible $GLOBALS overwrite problem in file upload handling, extract() and import_request_variables(). - Fixed a problem when a request was terminated due to memory_limit constraints during certain parse_str() calls. - Fixed an issue with trailing slashes in allowed basedirs. - Fixed an issue with calling virtual() on Apache 2. ncftp < TSL 2.2 > - New upstream. - Fixed directory traversal vulnerabilities (CVE-2002-1345). php4 < TSL 2.2 > - New upstream and Multiple Security Fixes. - SECURITY Fix: Updated to the latest pcrelib to fix a possible integer overflow vulnerability announced in CVE-2005-2491. - Fixed a Cross Site Scripting (XSS) vulnerability in phpinfo(). - Fixed multiple safe_mode/open_basedir bypass vulnerabilities in ext/curl and ext/gd. - Fixed a possible $GLOBALS overwrite problem in file upload handling, extract() and import_request_variables(). - Fixed a problem when a request was terminated due to memory_limit constraints during certain parse_str() calls. - Fixed an issue with trailing slashes in allowed basedirs. - Fixed an issue with calling virtual() on Apache 2. sudo < TSL 3.0 > < TSL 2.2 > < TSEL 2 > - SECURITY FIX: Tavis Ormandy has reported a vulnerability in Sudo, which can be exploited by malicious, local users to gain escalated privileges. The vulnerability is caused due to an error within the environment cleaning. This can be exploited by a user with sudo access to a bash script to execute arbitrary commands via the "SHELLOPTS" and "PS4" environment variables The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-2959. Action: We recommend that all systems with this package installed be upgraded. Please note that if you do not need the functionality provided by this package, you may want to remove it from your system. Location: All Trustix Secure Linux updates are available from <URI:http://http.trustix.org/pub/trustix/updates/>> <URI:ftp://ftp.trustix.org/pub/trustix/updates/>> About Trustix Secure Linux: Trustix Secure Linux is a small Linux distribution for servers. With focus on security and stability, the system is painlessly kept safe and up to date from day one using swup, the automated software updater. Automatic updates: Users of the SWUP tool can enjoy having updates automatically installed using 'swup --upgrade'. Questions? Check out our mailing lists: <URI:http://www.trustix.org/support/>> Verification: This advisory along with all Trustix packages are signed with the TSL sign key. This key is available from: <URI:http://www.trustix.org/TSL-SIGN-KEY>> The advisory itself is available from the errata pages at <URI:http://www.trustix.org/errata/trustix-2.2/>> and <URI:http://www.trustix.org/errata/trustix-3.0/>> or directly at <URI:http://www.trustix.org/errata/2005/0062/>> MD5sums of the packages: - -------------------------------------------------------------------------- 24f218df0f39220fb6fa85d8482d474c 2.2/rpms/ncftp-3.1.9-1tr.i586.rpm b8419cc291b81e3db050eae2de785e3a 2.2/rpms/php4-4.4.1-2tr.i586.rpm 175e83bc2f202a74293a501e5e55cbfd 2.2/rpms/php4-cli-4.4.1-2tr.i586.rpm ae60df4cc97315c21ac20952f77c2ea3 2.2/rpms/php4-curl-4.4.1-2tr.i586.rpm 0c38b5f529dd6ab448f6140fdb04d350 2.2/rpms/php4-devel-4.4.1-2tr.i586.rpm e739af36f8e235ff0b9393b0d46f0bd1 2.2/rpms/php4-domxml-4.4.1-2tr.i586.rpm 1d946e500f1b5b3822c02c0d318861a4 2.2/rpms/php4-exif-4.4.1-2tr.i586.rpm 2ab948befefb4e1be52f48d00cce61a5 2.2/rpms/php4-fcgi-4.4.1-2tr.i586.rpm f1097595965ae20273cd8920b11a3d49 2.2/rpms/php4-gd-4.4.1-2tr.i586.rpm 9fd0598ea866b18bb540240d1a5e5e7b 2.2/rpms/php4-imap-4.4.1-2tr.i586.rpm 72ec299cf7cbf69ef3ba59d6c1de3608 2.2/rpms/php4-ldap-4.4.1-2tr.i586.rpm 35f76927c35fc4b755b622a5e35b883f 2.2/rpms/php4-mhash-4.4.1-2tr.i586.rpm 6f974e1f102435a59a6ea61b1e07685a 2.2/rpms/php4-mysql-4.4.1-2tr.i586.rpm 4ee7ae9da4753cface5d83830b089c2d 2.2/rpms/php4-pgsql-4.4.1-2tr.i586.rpm c9dcbcf00d3b873a86e13f8a2a754e29 2.2/rpms/php4-test-4.4.1-2tr.i586.rpm 8eb46324bbf869742367767cb3a51902 2.2/rpms/sudo-1.6.8p9-2tr.i586.rpm 2c1c92c789d932dba3e3590188c75b19 3.0/rpms/sudo-1.6.8p9-2tr.i586.rpm - -------------------------------------------------------------------------- Trustix Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFDfb+mi8CEzsK9IksRAjUfAJ4vH/rmEs4rIgnyEW+I6kaPhYCmeQCdFMn2 OTAMxwLqpslsQGx2DBE3Pf4= =BPz9 -----END PGP SIGNATURE----- _______________________________________________ tsl-announce mailing list tsl-announce@lists.trustix.org http://lists.trustix.org/mailman/listinfo/tsl-announce (Log in to post comments)
|
|||||||||||||