copyright | disclaimer | privacy | contact

HOME   About AusCERT   Membership   Contact Us   PKI Services   Training   Publications   Sec. Bulletins   Conferences   News & Media   Services   Web Log   Site Map   Site Help   Member login Login »  Become a member »   Home » Security Bul... » By Operating... » UNIX (all) » Linux (all) » Debian GNU/L... » ESB-2005.0315 -- Debian Security Advisory DSA 709-1 ...   ESB-2005.0315 -- Debian Security Advisory DSA 709-1 -- New libexif packages fix arbitrary code execution Date: 18 April 2005 References: ESB-2005.0235  ESB-2005.0945   Click here for printable version -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2005.0315 -- Debian Security Advisory DSA 709-1 New libexif packages fix arbitrary code execution 18 April 2005 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: libexif Publisher: Debian Operating System: Debian GNU/Linux 3.0 Impact: Execute Arbitrary Code/Commands Denial of Service Access: Remote/Unauthenticated CVE Names: CAN-2005-0664 Ref: ESB-2005.0235 Original Bulletin: http://www.debian.org/security/2005/dsa-709 - --------------------------BEGIN INCLUDED TEXT-------------------- - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - -------------------------------------------------------------------------- Debian Security Advisory DSA 709-1 security@debian.org http://www.debian.org/security/ Martin Schulze April 15th, 2005 http://www.debian.org/security/faq - - -------------------------------------------------------------------------- Package : libexif Vulnerability : buffer overflow Problem-Type : remote Debian-specific: no CVE ID : CAN-2005-0664 Debian Bug : 298464 Sylvain Defresne discovered a buffer overflow in libexif, a library that parses EXIF files (such as JPEG files with extra tags). This bug could be exploited to crash the application and maybe to execute arbitrary code as well. For the stable distribution (woody) this problem has been fixed in version 0.5.0-1woody1. For the unstable distribution (sid) this problem has been fixed in version 0.6.9-5. We recommend that you upgrade your libexif package. Upgrade Instructions - - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.0 alias woody - - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/libe/libexif/libexif_0.5.0-1woody1.dsc Size/MD5 checksum: 588 c5f9941eb60839a174b36ca5ef2e05ab http://security.debian.org/pool/updates/main/libe/libexif/libexif_0.5.0-1woody1.diff.gz Size/MD5 checksum: 2414 64f21ec303cd05c2d0bf15521e7707a0 http://security.debian.org/pool/updates/main/libe/libexif/libexif_0.5.0.orig.tar.gz Size/MD5 checksum: 178556 76dd5547de0f0e707d5049fe751c4679 Alpha architecture: http://security.debian.org/pool/updates/main/libe/libexif/libexif-dev_0.5.0-1woody1_alpha.deb Size/MD5 checksum: 33402 68eca22ffef823e64bedf3db14c7778a http://security.debian.org/pool/updates/main/libe/libexif/libexif5_0.5.0-1woody1_alpha.deb Size/MD5 checksum: 27170 f8b1016e5dc5acad95e315d6efb8c639 ARM architecture: http://security.debian.org/pool/updates/main/libe/libexif/libexif-dev_0.5.0-1woody1_arm.deb Size/MD5 checksum: 26968 3f551f779beb9881bda8a0cdf5c2914b http://security.debian.org/pool/updates/main/libe/libexif/libexif5_0.5.0-1woody1_arm.deb Size/MD5 checksum: 22208 6097611fbdc6de79c47569f3e3b6722f Intel IA-32 architecture: http://security.debian.org/pool/updates/main/libe/libexif/libexif-dev_0.5.0-1woody1_i386.deb Size/MD5 checksum: 25932 42107613e27b51fab7d912d8fefdc064 http://security.debian.org/pool/updates/main/libe/libexif/libexif5_0.5.0-1woody1_i386.deb Size/MD5 checksum: 22334 c02b68cc168a284783c027d7d24d699b Intel IA-64 architecture: http://security.debian.org/pool/updates/main/libe/libexif/libexif-dev_0.5.0-1woody1_ia64.deb Size/MD5 checksum: 35582 390a36964cfcd55de7038226565012c7 http://security.debian.org/pool/updates/main/libe/libexif/libexif5_0.5.0-1woody1_ia64.deb Size/MD5 checksum: 31536 0f2278ae6a257b58071b2e2ffa6eb3f9 HP Precision architecture: http://security.debian.org/pool/updates/main/libe/libexif/libexif-dev_0.5.0-1woody1_hppa.deb Size/MD5 checksum: 30670 861713e3c4e355071c42087c9621dad1 http://security.debian.org/pool/updates/main/libe/libexif/libexif5_0.5.0-1woody1_hppa.deb Size/MD5 checksum: 25502 f8d1d59f8d9c61e0b1392d102dcc2b13 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/libe/libexif/libexif-dev_0.5.0-1woody1_m68k.deb Size/MD5 checksum: 25280 34e605f3bbaa451da389328383948887 http://security.debian.org/pool/updates/main/libe/libexif/libexif5_0.5.0-1woody1_m68k.deb Size/MD5 checksum: 22670 610afa47c67a3bbbe3e214f2be62eba2 Big endian MIPS architecture: http://security.debian.org/pool/updates/main/libe/libexif/libexif-dev_0.5.0-1woody1_mips.deb Size/MD5 checksum: 29450 96459f3d71b380ebc8f77e21355cf817 http://security.debian.org/pool/updates/main/libe/libexif/libexif5_0.5.0-1woody1_mips.deb Size/MD5 checksum: 22534 52575f793b537c62e759c7f3abef57be Little endian MIPS architecture: http://security.debian.org/pool/updates/main/libe/libexif/libexif-dev_0.5.0-1woody1_mipsel.deb Size/MD5 checksum: 29252 8b2f66fbacd87d306cb004c927469fce http://security.debian.org/pool/updates/main/libe/libexif/libexif5_0.5.0-1woody1_mipsel.deb Size/MD5 checksum: 22274 3e29e52d3ab8df5b32527be2d4322d7a PowerPC architecture: http://security.debian.org/pool/updates/main/libe/libexif/libexif-dev_0.5.0-1woody1_powerpc.deb Size/MD5 checksum: 30602 17fcace29b3eceb732c244b4dba36e5c http://security.debian.org/pool/updates/main/libe/libexif/libexif5_0.5.0-1woody1_powerpc.deb Size/MD5 checksum: 24140 ebc50f77e7085340b37dacd6dd9f62d7 IBM S/390 architecture: http://security.debian.org/pool/updates/main/libe/libexif/libexif-dev_0.5.0-1woody1_s390.deb Size/MD5 checksum: 26324 0d9e42b9723d95844b63a24f2fdfe369 http://security.debian.org/pool/updates/main/libe/libexif/libexif5_0.5.0-1woody1_s390.deb Size/MD5 checksum: 23288 876b66520ca55e4791fdf4fc3f58aed2 Sun Sparc architecture: http://security.debian.org/pool/updates/main/libe/libexif/libexif-dev_0.5.0-1woody1_sparc.deb Size/MD5 checksum: 28568 dd158a4009865418c60a6124292264c0 http://security.debian.org/pool/updates/main/libe/libexif/libexif5_0.5.0-1woody1_sparc.deb Size/MD5 checksum: 26168 06671f5d93b1ffa49b90bce5f36a33c5 These files will probably be moved into the stable distribution on its next update. - - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce@lists.debian.org Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg> - -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (GNU/Linux) iD8DBQFCX81CW5ql+IAeqTIRAn/RAKCoUXeCwUXAVSC+fK6aqkE3T5S9jgCcD3Ef 1Wqxz2vHKGP7zOpt0hfKrp8= =XIIz - -----END PGP SIGNATURE----- - --------------------------END INCLUDED TEXT-------------------- You have received this e-mail bulletin as a result of your organisation's registration with AusCERT. The mailing list you are subscribed to is maintained within your organisation, so if you do not wish to continue receiving these bulletins you should contact your local IT manager. If you do not know who that is, please send an email to auscert@auscert.org.au and we will forward your request to the appropriate person. NOTE: Third Party Rights This security bulletin is provided as a service to AusCERT's members. As AusCERT did not write the document quoted above, AusCERT has had no control over its content. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. NOTE: This is only the original release of the security bulletin. It may not be updated when updates to the original are made. If downloading at a later date, it is recommended that the bulletin is retrieved directly from the author's website to ensure that the information is still current. Contact information for the authors of the original document is included in the Security Bulletin above. If you have any questions or need further information, please contact them directly. Previous advisories and external security bulletins can be retrieved from: http://www.auscert.org.au/render.html?cid=1980 If you believe that your computer system has been compromised or attacked in any way, we encourage you to let us know by completing the secure National IT Incident Reporting Form at: http://www.auscert.org.au/render.html?it=3192 =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: auscert@auscert.org.au Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iQCVAwUBQmNJ7yh9+71yA2DNAQLD8QP/Wlq6pYY4IKdi3iwm7Iqxof5gRP4lwoPk ZML/RJtKvcORIVKO0jl4QY/6S4EmtgaNKoLuzcyzTFbCJesgGhdBHvZ4p9dfDleb lsWM3rBW8CWYP1RJtcsrh4EOsEAxpbU+qEVX9xhyc53tqZE3mdr3MZzUhNxVoWcU YU59TYj45y8= =7jqt -----END PGP SIGNATURE-----

Comments? Click here http://www.auscert.org.au/render.html?cid=55&it=5007