|
|
Subscribe / Log in / New account

CVS - exploitable double-free bug in the CVS server

Package(s):cvs CVE #(s):CAN-2003-0015
Created:January 20, 2003 Updated:April 7, 2003
Description: CVS is a version control system frequently used to manage source code repositories. During an audit of the CVS sources, Stefan Esser discovered an exploitable double-free bug in the CVS server.

On servers which are configured to allow anonymous read-only access, this bug could be used by anonymous users to gain write privileges. Users with CVS write privileges can then use the Update-prog and Checkin-prog features to execute arbitrary commands on the server.

All users of CVS are advised to upgrade to erratum packages which contain patches to correct the double-free bug.

See also this CERT advisory

Alerts:
Immunix IMNX-2003-7+-004-01 cvs 2003-04-02
SCO Group CSSA-2003-006.0 CVS 2003-01-31
Yellow Dog YDU-20030127-6 cvs 2003-01-27
Conectiva CLA-2003:561 cvs 2003-01-23
SuSE SuSE-SA:2003:0007 cvs 2003-01-22
Slackware sl-1043242333 cvs 2003-01-22
Conectiva CLA-2003:560 cvs 2003-01-21
Debian DSA-233-1 cvs 2003-01-21
Gentoo 200301-12 cvs 2003-01-21
OpenPKG OpenPKG-SA-2003.004 cvs 2003-01-21
Mandrake MDKSA-2003:009 cvs 2003-01-20
Red Hat RHSA-2003:012-07 cvs 2003-01-20
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds