Tetragono

DSA-1710 ganglia-monitor-core – buffer overflow

Staff — Mon, 26 Jan 2009 14:43:18 +0000

Spike Spiegel discovered a stack-based buffer overflow in gmetad, the
meta-daemon for the ganglia cluster monitoring toolkit, which could be
triggered via a request with long path names and might enable
arbitrary code execution.

DSA-1709 shadow – race condition

Staff — Mon, 26 Jan 2009 14:43:18 +0000

Paul Szabo discovered that login, the system login tool, did not
correctly handle symlinks while setting up tty permissions. If a local
attacker were able to gain control of the system utmp file, they could
cause login to change the ownership and permissions on arbitrary files,
leading to a root privilege escalation.

DSA-1708 git-core – shell command injection

Staff — Mon, 26 Jan 2009 14:43:18 +0000

It was discovered that gitweb, the web interface for the Git version
control system, contained several vulnerabilities:

DSA-1707 iceweasel – several vulnerabilities

Staff — Mon, 26 Jan 2009 14:43:18 +0000

Several remote vulnerabilities have been discovered in the Iceweasel web
browser, an unbranded version of the Firefox browser. The Common
Vulnerabilities and Exposures project identifies the following problems:

DSA-1706 amarok – integer overflows

Staff — Mon, 26 Jan 2009 14:43:18 +0000

Tobias Klein discovered that integer overflows in the code the Amarok
media player uses to parse Audible files may lead to the execution of
arbitrary code.

DSA-1705 netatalk – missing input sanitising

Staff — Mon, 26 Jan 2009 14:43:18 +0000

It was discovered that netatalk, an implementation of the AppleTalk
suite, is affected by a command injection vulnerability when processing
PostScript streams via papd. This could lead to the execution of
arbitrary code. Please note that this only affects installations that are
configured to use a pipe command in combination with wildcard symbols
substituted with values of the printed job.

DSA-1704 xulrunner – several vulnerabilities

Staff — Mon, 26 Jan 2009 14:43:17 +0000

Several remote vulnerabilities have been discovered in Xulrunner, a
runtime environment for XUL applications. The Common Vulnerabilities and
Exposures project identifies the following problems:

DSA-1703 bind9 – interpretation conflict

Staff — Mon, 26 Jan 2009 14:43:17 +0000

It was discovered that BIND, an implementation of the DNS protocol
suite, does not properly check the result of an OpenSSL function which
is used to verify DSA cryptographic signatures. As a result,
incorrect DNS resource records in zones protected by DNSSEC could be
accepted as genuine.

DSA-1702 ntp – interpretation conflict

Staff — Mon, 26 Jan 2009 14:43:17 +0000

It has been discovered that NTP, an implementation of the Network Time
Protocol, does not properly check the result of an OpenSSL function
for verifying cryptographic signatures, which may ultimately lead to
the acceptance of unauthenticated time information. (Note that
cryptographic authentication of time servers is often not enabled in
the first place.)

DSA-1701 openssl, openssl097 – interpretation conflict

Staff — Mon, 26 Jan 2009 14:43:17 +0000

It was discovered that OpenSSL does not properly verify DSA signatures
on X.509 certificates due to an API misuse, potentially leading to the
acceptance of incorrect X.509 certificates as genuine (CVE-2008-5077).