LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

SCO Group alert CSSA-2003-011.0 (zlib)



From:
    	      security@sco.com


To:
    	      bugtraq@securityfocus.com, announce@lists.caldera.com,
 security-alerts@linuxsecurity.com


Subject:
    	      Security Update: [CSSA-2003-011.0] Linux: format string vulnerability in zlib (gzprintf)


Date:
    	      Mon, 10 Mar 2003 11:53:14 -0800



To: bugtraq@securityfocus.com announce@lists.caldera.com security-alerts@linuxsecurity.com


______________________________________________________________________________

			SCO Security Advisory

Subject:		Linux: format string vulnerability in zlib (gzprintf)
Advisory number: 	CSSA-2003-011.0
Issue date: 		2003 March 10
Cross reference:
______________________________________________________________________________


1. Problem Description

	There is a buffer overflow in the gzprintf function in zlib that
	can enable attackers to cause a denial of service or possibly
	execute arbitrary code.


2. Vulnerable Supported Versions

	System				Package
	----------------------------------------------------------------------

	OpenLinux 3.1.1 Server		prior to libz-1.1.4-2.i386.rpm
					prior to libz-devel-1.1.4-2.i386.rpm
					prior to libz-devel-static-1.1.4-2.i386.rpm

	OpenLinux 3.1.1 Workstation	prior to libz-1.1.4-2.i386.rpm
					prior to libz-devel-1.1.4-2.i386.rpm
					prior to libz-devel-static-1.1.4-2.i386.rpm

	OpenLinux 3.1 Server		prior to libz-1.1.4-2.i386.rpm
					prior to libz-devel-1.1.4-2.i386.rpm
					prior to libz-devel-static-1.1.4-2.i386.rpm

	OpenLinux 3.1 Workstation	prior to libz-1.1.4-2.i386.rpm
					prior to libz-devel-1.1.4-2.i386.rpm
					prior to libz-devel-static-1.1.4-2.i386.rpm


3. Solution

	The proper solution is to install the latest packages. Many
	customers find it easier to use the Caldera System Updater, called
	cupdate (or kcupdate under the KDE environment), to update these
	packages rather than downloading and installing them by hand.


4. OpenLinux 3.1.1 Server

	4.1 Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2003-011.0/RPMS

	4.2 Packages

	54e3d653907b2aa8111939d208b1f48b	libz-1.1.4-2.i386.rpm
	7b6103ac070899d33ddc18ec0152c8ad	libz-devel-1.1.4-2.i386.rpm
	bf687e8997a2c7413f183cf0398a797c	libz-devel-static-1.1.4-2.i386.rpm

	4.3 Installation

	rpm -Fvh libz-1.1.4-2.i386.rpm
	rpm -Fvh libz-devel-1.1.4-2.i386.rpm
	rpm -Fvh libz-devel-static-1.1.4-2.i386.rpm

	4.4 Source Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2003-011.0/SRPMS

	4.5 Source Packages

	cb073eedd69f6503fdaaf7a12ed37c10	libz-1.1.4-2.src.rpm


5. OpenLinux 3.1.1 Workstation

	5.1 Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2003-011.0/RPMS

	5.2 Packages

	80a08ebf1d968f880b8bfeb9a91d9288	libz-1.1.4-2.i386.rpm
	de1a572406aae392822c6b8fd9667c05	libz-devel-1.1.4-2.i386.rpm
	80f2a2de435d10d2acd957cc07790cf9	libz-devel-static-1.1.4-2.i386.rpm

	5.3 Installation

	rpm -Fvh libz-1.1.4-2.i386.rpm
	rpm -Fvh libz-devel-1.1.4-2.i386.rpm
	rpm -Fvh libz-devel-static-1.1.4-2.i386.rpm

	5.4 Source Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2003-011.0/SRPMS

	5.5 Source Packages

	dd564551f59c8675aec4cab15e6108dc	libz-1.1.4-2.src.rpm


6. OpenLinux 3.1 Server

	6.1 Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Server/CSSA-2003-011.0/RPMS

	6.2 Packages

	5cc16bd91015ce00f468e747a5fc8772	libz-1.1.4-2.i386.rpm
	1d321ea1297616096fb5e1a3b72ec828	libz-devel-1.1.4-2.i386.rpm
	021368dbf124ba856d46fb85f072b010	libz-devel-static-1.1.4-2.i386.rpm

	6.3 Installation

	rpm -Fvh libz-1.1.4-2.i386.rpm
	rpm -Fvh libz-devel-1.1.4-2.i386.rpm
	rpm -Fvh libz-devel-static-1.1.4-2.i386.rpm

	6.4 Source Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Server/CSSA-2003-011.0/SRPMS

	6.5 Source Packages

	9707abacf6336b2d5cb62529a0021d97	libz-1.1.4-2.src.rpm


7. OpenLinux 3.1 Workstation

	7.1 Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Workstation/CSSA-2003-011.0/RPMS

	7.2 Packages

	303370a239df4fdff20a93ec885ef342	libz-1.1.4-2.i386.rpm
	ff34cf793e2c8c70627ecd29c271dcca	libz-devel-1.1.4-2.i386.rpm
	eaef0a84c34dd17b2af72f9e235803da	libz-devel-static-1.1.4-2.i386.rpm

	7.3 Installation

	rpm -Fvh libz-1.1.4-2.i386.rpm
	rpm -Fvh libz-devel-1.1.4-2.i386.rpm
	rpm -Fvh libz-devel-static-1.1.4-2.i386.rpm

	7.4 Source Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Workstation/CSSA-2003-011.0/SRPMS

	7.5 Source Packages

	c0c9de8ce6e7d254a640b2a84e5d806d	libz-1.1.4-2.src.rpm


8. References

	Specific references for this advisory:

		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0107

	SCO security resources:

		http://www.sco.com/support/security/index.html

	This security fix closes SCO incidents sr875410, fz527488,
	erg712251.


9. Disclaimer

	SCO is not responsible for the misuse of any of the information
	we provide on this website and/or through our security
	advisories. Our advisories are a service to our customers intended
	to promote secure installation and use of SCO products.


10. Acknowledgements

	Richard Kettlewell <rjk@greenend.org.uk> discovered and researched
	this vulnerability.

______________________________________________________________________________
(Log in to post comments)

SCO security advisory to zlib

Posted Mar 10, 2003 22:15 UTC (Mon) by jre (guest, #2807) [Link]

I thought the entire SCO distribution was considered to be one huge security vulnerability these days. Or maybe it's the SCO organization ...

SCO security advisory to zlib

Posted Mar 10, 2003 23:00 UTC (Mon) by ami (guest, #5280) [Link]

I was thinking - maybe it's time to start ignoring SCO news.

Basically pretend they don't exist, except for news of their legal battle.

Ignoring SCO

Posted Mar 10, 2003 23:07 UTC (Mon) by corbet (editor, #1) [Link]

We've had a couple of people suggest things like that - turn SCO into an undistribution or some such. I don't think that is the right approach for a news organization to take, though. And especially not with security alerts. It could well just make people wonder what else we're not telling them about.

In any case, pretending they don't exist won't fix anything; better to keep a steady gaze on them, I think.

Ignoring SCO

Posted Mar 11, 2003 5:10 UTC (Tue) by BrucePerens (guest, #2510) [Link]

SCO exists, but they are persona non grata. And we have some wonderful surprises for them. Watch this space.

Bruce

Ignoring SCO

Posted Mar 11, 2003 8:45 UTC (Tue) by rjamestaylor (guest, #339) [Link]

You ARE a tease!

*sigh* my treatment to cure compulsive reloading of LWN.NET will have to wait another week. . .


Seriously, the quicker this is resolved and the more drastic the resolution the better. Our own little "Shock and Awe", if you will.

Ignoring SCO

Posted Mar 12, 2003 4:59 UTC (Wed) by Peter (guest, #1127) [Link]

You ARE a tease!

Yeah, what he said.

the quicker this is resolved and the more drastic the resolution the better.

Heh, I like that quote.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds