Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2006.0095 -- [UNIX/Linux][Debian] New pdfkit.framework packages fix arbitrary code execution 2 February 2006 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: pdfkit.framework Publisher: Debian Operating System: Debian GNU/Linux 3.1 UNIX variants (UNIX, Linux, OSX) Impact: Execute Arbitrary Code/Commands Denial of Service Access: Remote/Unauthenticated CVE Names: CVE-2005-3628 CVE-2005-3627 CVE-2005-3626 CVE-2005-3625 CVE-2005-3624 CVE-2005-3193 CVE-2005-3192 CVE-2005-3191 Original Bulletin: http://www.debian.org/security/2006/dsa-961 - --------------------------BEGIN INCLUDED TEXT-------------------- - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - -------------------------------------------------------------------------- Debian Security Advisory DSA 961-1 security@debian.org http://www.debian.org/security/ Martin Schulze February 1st, 2006 http://www.debian.org/security/faq - - -------------------------------------------------------------------------- Package : pdfkit.framework Vulnerability : buffer overflows Problem type : remote Debian-specific: no CVE IDs : CVE-2005-3191 CVE-2005-3192 CVE-2005-3193 CVE-2005-3624 CVE-2005-3625 CVE-2005-3626 CVE-2005-3627 CVE-2005-3628 "infamous41md" and Chris Evans discovered several heap based buffer overflows in xpdf which are also present in pdfkit.framework, the GNUstep framework for rendering PDF content, and which can lead to a denial of service by crashing the application or possibly to the execution of arbitrary code. The old stable distribution (woody) does not contain pdfkit.framework packages. For the stable distribution (sarge) these problems have been fixed in version 0.8-2sarge1. For the unstable distribution (sid) these problems will be fixed soon. We recommend that you upgrade your pdfkit.framework package. Upgrade Instructions - - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1.dsc Size/MD5 checksum: 725 67fb49e4f05a6eef25396d23ca0baacd http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1.diff.gz Size/MD5 checksum: 5699 61578e6e26adf73639b464210830896b http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8.orig.tar.gz Size/MD5 checksum: 1780533 7676643ff78a0602c10bfb97fe0bd448 Alpha architecture: http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1_alpha.deb Size/MD5 checksum: 1821874 8fe74b91409115b4547ba273501e8f79 AMD64 architecture: http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1_amd64.deb Size/MD5 checksum: 1796698 c6f96adecd322a60d77379d1513b26dc ARM architecture: http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1_arm.deb Size/MD5 checksum: 1756056 8632f1ef914df5fcc3b6c3f6dc9ce459 Intel IA-32 architecture: http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1_i386.deb Size/MD5 checksum: 1750384 f000dee97e83dbe85941c1305e689ef2 Intel IA-64 architecture: http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1_ia64.deb Size/MD5 checksum: 1980936 dce8ad12b1ce0e5e097c51243c68f749 HP Precision architecture: http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1_hppa.deb Size/MD5 checksum: 1862404 b4b0d1a421d02987330502e4a653e6a9 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1_m68k.deb Size/MD5 checksum: 1785734 1c14679aba2cd8cd8bf7aabd42db1cf6 Big endian MIPS architecture: http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1_mips.deb Size/MD5 checksum: 1769138 6600cf166ba6ced0b6c067338f9565c1 Little endian MIPS architecture: http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1_mipsel.deb Size/MD5 checksum: 1754778 0539c52303cf950f3ea66f78eb875449 PowerPC architecture: http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1_powerpc.deb Size/MD5 checksum: 1770876 a8098242afc68c1dfd0c2141f95d88f5 IBM S/390 architecture: http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1_s390.deb Size/MD5 checksum: 1804716 88af5f5ab641839eac628f9dd36e4509 Sun Sparc architecture: http://security.debian.org/pool/updates/main/p/pdfkit.framework/pdfkit.framework_0.8-2sarge1_sparc.deb Size/MD5 checksum: 1779964 c07986d5367f97f1598d7e2d592fdc40 These files will probably be moved into the stable distribution on its next update. - - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce@lists.debian.org Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg> - -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) iD8DBQFD4GGxW5ql+IAeqTIRAvQiAJ4xOAQr4GcVkPcKAGIlXuLVh+cDOgCdHp19 WLOiQcmij8udAgyvS0Y7Jw4= =Fs3s - -----END PGP SIGNATURE----- - --------------------------END INCLUDED TEXT-------------------- You have received this e-mail bulletin as a result of your organisation's registration with AusCERT. The mailing list you are subscribed to is maintained within your organisation, so if you do not wish to continue receiving these bulletins you should contact your local IT manager. If you do not know who that is, please send an email to auscert@auscert.org.au and we will forward your request to the appropriate person. NOTE: Third Party Rights This security bulletin is provided as a service to AusCERT's members. As AusCERT did not write the document quoted above, AusCERT has had no control over its content. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. NOTE: This is only the original release of the security bulletin. It may not be updated when updates to the original are made. If downloading at a later date, it is recommended that the bulletin is retrieved directly from the author's website to ensure that the information is still current. Contact information for the authors of the original document is included in the Security Bulletin above. If you have any questions or need further information, please contact them directly. Previous advisories and external security bulletins can be retrieved from: http://www.auscert.org.au/render.html?cid=1980 If you believe that your computer system has been compromised or attacked in any way, we encourage you to let us know by completing the secure National IT Incident Reporting Form at: http://www.auscert.org.au/render.html?it=3192 =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: auscert@auscert.org.au Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iQCVAwUBQ+GlESh9+71yA2DNAQIN6QP+LQbxGr1FsU89RQveUWLXyJbI2EAGpFsl 4AgQYEnbjFY/iafkITjnlrSgkiaZipJnHbi4ACvlDe/dscIN+1iag8mrqD9z5uK1 kbhmr37mEAsNSsrq1ky3KidrIEZf2GA9r9w3C6BRDX/DnFTQ02InXbTCuiV8+Dv7 fG/CRrUMpf4= =wkIZ -----END PGP SIGNATURE-----