[Message Precedent sur la mailing][Message Suivant sur la mailing][Precedent dans le fil][Prochain dans le fil][Index par Date][Index par fil] [SA19985] Debian update for cgiirc



TITLE:
Debian update for cgiirc



SECUNIA ADVISORY ID:
SA19985



VERIFY ADVISORY:
link://[click]



CRITICAL:
Moderately critical



IMPACT:
DoS, System access



WHERE:
From remote



OPERATING SYSTEM:
Debian GNU/Linux unstable alias sid
link://[click]
Debian GNU/Linux 3.1
link://[click]



DESCRIPTION:
Debian has issued an update for cgiirc. This fixes a vulnerability,
which can be exploited by malicious users to cause a DoS (Denial of
Service) and potentially compromise a vulnerable system.



For more information:
SA19922

SOLUTION:
Apply updated packages.



-- Debian GNU/Linux 3.1 alias sarge --

Source archives:

link://[click]
Size/MD5 checksum: 590 daed94ad35a0ac4935086bfd1379c20f
link://[click]
Size/MD5 checksum: 13507 a885a3704d8313920548f156d764dec6
link://[click]
Size/MD5 checksum: 127545 c32ce6514626729ef8cf30cf7bd1a51e

Alpha architecture:

link://[click]
Size/MD5 checksum: 122974 55a573eb356b35cb32b651ca570d76f6

AMD64 architecture:

link://[click]
Size/MD5 checksum: 122526 25977ad46ac501c8c81de1347dac8cc9

ARM architecture:

link://[click]
Size/MD5 checksum: 122004 594434fc3222bd093b4b202e2e9df1ec

Intel IA-32 architecture:

link://[click]
Size/MD5 checksum: 122082 e5d18578977303524a6d9c92a314b0cf

Intel IA-64 architecture:

link://[click]
Size/MD5 checksum: 123546 b91e34892993e4d176d3fa8ff970f123

HP Precision architecture:

link://[click]
Size/MD5 checksum: 122868 96f3c61fa95509d03277209d5549a037

Motorola 680x0 architecture:

link://[click]
Size/MD5 checksum: 121960 e6a1341cee535289a78ef0e2ca33badd

Big endian MIPS architecture:

link://[click]
Size/MD5 checksum: 123686 ebebe98b959b9985581338ffa5f60857

Little endian MIPS architecture:

link://[click]
Size/MD5 checksum: 123688 0004985ff0018cad8ff54630b4b96e7d

PowerPC architecture:

link://[click]
Size/MD5 checksum: 122502 d2b6b1cbd8d05baebdbd7febd16edc39

IBM S/390 architecture:

link://[click]
Size/MD5 checksum: 122504 833f9eb5d35ec6baac52ceec8193422d

Sun Sparc architecture:

link://[click]
Size/MD5 checksum: 122060 e611d3c02896f065d3989a3182cd4fd7

-- Debian GNU/Linux unstable alias sid --

Fixed in version 0.5.4-6sarge1.





ORIGINAL ADVISORY:
link://[click]

OTHER REFERENCES:
SA19922:
link://[click]





About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.



Subscribe:
link://[click]



Definitions: (Criticality, Where etc.)
link://[click]




Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.


Secunia NEVER sends attached files with advisories.


Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

Precedent par Date: [SA20031] StatIt "statitpath" Parameter File Inclusion Vulnerability
Suivant par Date: [SA19993] Jetbox CMS "relative_script_path" File Inclusion Vulnerability
Precedent par fil : [SA20031] StatIt "statitpath" Parameter File Inclusion Vulnerability
Suivant par fil : [SA19993] Jetbox CMS "relative_script_path" File Inclusion Vulnerability
Index(s):
- Date
- Fil

Archives de la liste de diffusion Secunia
Archives de la liste de diffusion Full Disclosure

SecuToolBox :

Bluetooth Stack Smasher v0.6 / Bluetooth Stack Smasher v0.8 / Slides Bluetooth Eurosec 2006 / Exposé vidéo Windows Shellcode - Kostya Kortchinsky / Exposé audio Reverse Engineering - Nicolas Brulez / Exposé vidéo Securitech - Pierre Betouin / WEP aircrack + Ubiquiti (MadWifi) 300 mW + Yagi / Secure WIFI WPA + EAP-TLS + Freeradius / Audit Windows / Captive Password Windows / USBDumper / USBDumper 2 / Hacking Hardware / WishMaster backdoor / DNS Auditing Tool / Ettercap SSL MITM / Exploit vulnérabilités Windows / Memory Dumper Kernel Hardening / Reverse Engineering / Scapy / SecUbuLIVE CD / Metasploit / eEye Blink Sec Center / eEye Retina Scanner + d'outils / + de tutoriels

Mini-Tagwall des articles publiés sur SecuObs :

sécurité, exploit, windows, outil, attaque, réseau, microsoft, metasploit, audit, vulnérabilité, système, virus, internet, usbsploit, données, protocol, présentation, linux, source, réseaux, bluetooth, scanner, reverse, conférence, shell, meterpreter, vista, rootkit, engineering, mobile, security, wishmaster, malicieux, https, trames, paquet, noyau, téléphone, détection, botnet, forensic, libre, snort, utilisant, sysun + de mots clés avec l'annuaire des articles publiés sur SecuObs

Mini-Tagwall de l'annuaire video :

curit, security, biomet, metasploit, biometric, cking, password, windows, botnet, defcon, tutorial, crypt, xploit, exploit, lockpicking, linux, attack, wireshark, vmware, rootkit, conference, network, shmoocon, backtrack, virus, conficker, elcom, etter, elcomsoft, server, meterpreter, openvpn, ettercap, openbs, iphone, shell, openbsd, iptables, securitytube, deepsec, source, office, systm, openssh, radio + de mots clés avec l'annuaire des videos

Mini-Tagwall des articles de la revue de presse :

security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone, server, inject, patch, apple, twitter, mobile, virus, ebook, facebook, vulnérabilité, crypt, source, linux, password, intel, research, virtual, phish, access, tutorial, trojan, social, privacy, firefox, adobe, overflow, office, cisco, conficker, botnet, pirate, sécurité + de mots clés avec l'annuaire de la revue de presse

Mini-Tagwall des Tweets de la revue Twitter :

security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall, network, twitter, vmware, windows, microsoft, compliance, vulnerability, python, engineering, source, kernel, crypt, social, overflow, nessus, crack, hacker, virus, iphone, patch, virtual, javascript, malware, conficker, pentest, research, email, password, adobe, apache, proxy, backtrack + de mots clés avec l'annuaire de la revue Twitter