Login
Newsletter
Werbung
Sicherheit: Race Condition in chfn und chsh
Aktuelle Meldungen Distributionen
Name: Race Condition in chfn und chsh
ID: CSSA-2002-043.0
Distribution: Caldera
Plattformen: Caldera Server 3.1, Caldera Workstation 3.1, Caldera Server 3.1.1, Caldera Workstation 3.1.1
Datum: Fr, 1. November 2002, 12:00
Referenzen: Keine Angabe
Applikationen: Passwd

Originalnachricht

 
--6sX45UoQRIJXqkqR
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

To: bugtraq@securityfocus.com announce@lists.caldera.com
 security-alerts@linuxsecurity.com full-disclosure@lists.netsys.com

______________________________________________________________________________

			SCO Security Advisory

Subject:		Linux: chfn (util-linux) temp file race vulnerability
Advisory number: 	CSSA-2002-043.0
Issue date: 		2002 October 29
Cross reference:
______________________________________________________________________________


1. Problem Description

	The util-linux package vulnerable to privilege escalation when the
	"ptmptmp" file is not removed properly when using "chfn"
 utility.


2. Vulnerable Supported Versions

	System				Package
	----------------------------------------------------------------------

	OpenLinux 3.1.1 Server		prior to util-linux-2.11l-5.1.i386.rpm

	OpenLinux 3.1.1 Workstation	prior to util-linux-2.11l-5.1.i386.rpm

	OpenLinux 3.1 Server		prior to util-linux-2.11l-5.1.i386.rpm

	OpenLinux 3.1 Workstation	prior to util-linux-2.11l-5.1.i386.rpm


3. Solution

	The proper solution is to install the latest packages. Many
	customers find it easier to use the Caldera System Updater, called
	cupdate (or kcupdate under the KDE environment), to update these
	packages rather than downloading and installing them by hand.


4. OpenLinux 3.1.1 Server

	4.1 Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2002-043.0/RPMS

	4.2 Packages

	98e88787d222b51faabb2e070938f042	util-linux-2.11l-5.1.i386.rpm

	4.3 Installation

	rpm -Fvh util-linux-2.11l-5.1.i386.rpm

	4.4 Source Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2002-043.0/SRPMS

	4.5 Source Packages

	ad191ca704a7ce42122be237bd130130	util-linux-2.11l-5.1.src.rpm


5. OpenLinux 3.1.1 Workstation

	5.1 Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2002-043.0/RPMS

	5.2 Packages

	41a6998cc6a49350c92e6b39c7fd313b	util-linux-2.11l-5.1.i386.rpm

	5.3 Installation

	rpm -Fvh util-linux-2.11l-5.1.i386.rpm

	5.4 Source Package Location

	SRPMS

	5.5 Source Packages

	a94ff2530db09700bcc8ccb245f4c084	util-linux-2.11l-5.1.src.rpm


6. OpenLinux 3.1 Server

	6.1 Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Server/CSSA-2002-043.0/RPMS

	6.2 Packages

	bea4d3169f518c9ce5453befdc6c2372	util-linux-2.11l-5.1.i386.rpm

	6.3 Installation

	rpm -Fvh util-linux-2.11l-5.1.i386.rpm

	6.4 Source Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Server/CSSA-2002-043.0/SRPMS

	6.5 Source Packages

	8eda88f37ed5d3ed98a0e6a2e260fe25	util-linux-2.11l-5.1.src.rpm


7. OpenLinux 3.1 Workstation

	7.1 Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Workstation/CSSA-2002-043.0/RPMS

	7.2 Packages

	4bdca72dec95ca197a2e623aa940b14e	util-linux-2.11l-5.1.i386.rpm

	7.3 Installation

	rpm -Fvh util-linux-2.11l-5.1.i386.rpm

	7.4 Source Package Location

	ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Workstation/CSSA-2002-043.0/SRPMS

	7.5 Source Packages

	4bef4047eed39cd905dc20efb8a1a9d7	util-linux-2.11l-5.1.src.rpm


8. References

	Specific references for this advisory:
		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0638
		http://www.kb.cert.org/vuls/id/405955
		http://razor.bindview.com/publish/advisories/adv_chfn.html

	SCO security resources:
		http://www.sco.com/support/security/index.html

	This security fix closes SCO incidents sr866639, fz521517,
	erg501629.


9. Disclaimer

	SCO is not responsible for the misuse of any of the information
	we provide on this website and/or through our security
	advisories. Our advisories are a service to our customers intended
	to promote secure installation and use of SCO products.


10. Acknowledgements

	The BindView RAZOR Team discovered and researched this
	vulnerability.

______________________________________________________________________________

--6sX45UoQRIJXqkqR
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (SCO_SV)
Comment: For info see http://www.gnupg.org

iEYEARECAAYFAj2/NQwACgkQbluZssSXDTEg7QCghnMdv/biK8Sho82aDUC/IPv3
cEgAnR8Xk6dkjJgTZfGbpIY3fSvpVPYp
=gGOB
-----END PGP SIGNATURE-----

--6sX45UoQRIJXqkqR--
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten

141
Mach­t's gut!

51
Neue Raspber­ry Pi-Va­ri­an­te mit 8 GB RAM

0
Genode 20.05 frei­ge­ge­ben

9
Sub­ver­si­on 1.14.0-LTS vor­ge­stellt

0
»Hum­ble Ci­ties: Sky­lines Bund­le« vor­ge­stellt

0
End of Life für Co­reOS Con­tai­ner Linux ver­kün­det

32
Elek­tra 0.9.2 er­schie­nen

8
Nex­tDNS ver­lässt die Be­ta-Pha­se

23
Tu­xe­do stellt Ga­mer-Note­book vor

0
Libre Gra­phics Mee­ting be­ginnt als On­li­ne-Va­ri­an­te
 
Werbung