SUSE Security Announcement
Package: cvs
Announcement-ID: SuSE-SA:2004:008
Date: Wed Apr 14 16:00:00 MEST 2004
Affected products: 8.0, 8.1, 8.2, 9.0 SuSE Firewall on CD 2 SuSE Linux Enterprise Server 7, 8 SLES 8 for IBM iSeries and IBM pSeries SuSE Linux Office Server UnitedLinux 1.0
Vulnerability Type: remote code execution
Severity (1-10): 5
SUSE default package: No
Cross References:
Content of this advisory:
1. security vulnerability resolved: arbitrary file creation in cvs problem description, discussion, solution and upgrade information
2. pending vulnerabilities, solutions, workarounds:
* neon
* tcpdump
* openssh
* kdeprint/kdelibs3
* MPlayer
* mailman
* systat
* apache2
* emil
3. standard appendix (further information)
1) problem description, brief discussion, solution, upgrade information
The Concurrent Versions System (CVS) offers tools which allow developers to share and maintain large software projects. During the analyzation of the CVS protocol and their implementation, the SuSE Security Team discovered a flaw within the handling of pathnames. Evil CVS servers could specify absolute pathnames during checkouts and updates, which allows to create arbitrary files with the permissions of the user invoking the CVS client. This could lead to a compromise of the system.
Please download the update package for your distribution and verify its integrity by the methods listed in section 3) of this announcement. Then, install the package using the command "rpm -Fhv file.rpm" to apply the update.
Our maintenance customers are being notified individually. The packages are being offered to install from the maintenance web.
Intel i386 Platform:
SuSE-9.0:
ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/cvs-1.11.6-79.i586.rpm
392353d02948dee01fa98832841699be
patch rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/cvs-1.11.6-79.i586.patch.rpm
fd287ccde902d5a93ce54c141f4f888d
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/cvs-1.11.6-79.src.rpm
f094e09f54e176747f7441d44c20e12c
SuSE-8.2:
ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/i586/cvs-1.11.5-103.i586.rpm
a690613adaf637365f8b99a91373f5cf
patch rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/i586/cvs-1.11.5-103.i586.patch.rpm
844400ec62905d78b9e196c311f49207
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/src/cvs-1.11.5-103.src.rpm
202d2afd939caff003fbe73f65977ee6
SuSE-8.1:
ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/cvs-1.11.1p1-326.i586.rpm
90401ed5771c3570310c23efcd503bee
patch rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/cvs-1.11.1p1-326.i586.patch.rpm
42335546a7937ccc0fc6173ba1697ed9
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/src/cvs-1.11.1p1-326.src.rpm
ca6cb008ba8004635f9892552ed3e569
SuSE-8.0:
ftp://ftp.suse.com/pub/suse/i386/update/8.0/d3/cvs-1.11.1p1-326.i386.rpm
b24bca587706433d0cfa81ae96822e81
patch rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/8.0/d3/cvs-1.11.1p1-326.i386.patch.rpm
b5df706c6862ade002714607ba6027f6
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/8.0/zq1/cvs-1.11.1p1-326.src.rpm
26b4e34fb562fdccf33f35bfde16a403
Opteron x86_64 Platform:
SuSE-9.0:
ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/cvs-1.11.6-78.x86_64.rpm
dae12f94ea7eb35ed9b5172a8288d032
patch rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/cvs-1.11.6-78.x86_64.patch.rpm
07ca7acf86abd38e617a60e28dedfb0c
source rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/src/cvs-1.11.6-78.src.rpm
02d1e7f89a0f5372dc8a702032f4f4c2
**************** *****************************
Kiggundu Mukasa # Computer Network Consultancy###
KYM-NET LTD. # Intranets & Internet Solutions#
Plot 80 Kanjokya Street
P.O. Box 24284 Kampala, Uganda
Tel: +256 77 972255
+256 71 221141
Fax: +256 31 262122
*****************************************************************
