Your message dated Mon, 02 Feb 2009 21:47:10 +0000
with message-id <e1lu6dk-0004tc...@ries.debian.org>
and subject line Bug#508597: fixed in gpsdrive 2.10~pre4-6.dfsg-1+lenny1
has caused the Debian Bug report #508597,
regarding gpsdriver: allows local users to overwrite arbitrary files via a 
symlink attack
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
508597: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=508597
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: gpsdrive
Version: 2.10~pre4-6.dfsg-1
Tags: security
Severity: important

Hi,

I have found three other attack vectors:

/usr/share/doc/gpsdrive/examples/gpssmswatch:
> FILE=/tmp/.smswatch
> while [ 1 = 1 ]
> do
> gnokii --getsms SM 1 > $FILE
> if [ $? = "0" ];then
> gnokii --deletesms SM 1
> fi
> grep PLSSENDPOS $FILE
> if [ $? = "0" ];then
> echo -e "position request found\n"
> NUMBER=`grep Sender /tmp/.smswatch|awk '{print $2}'`
> killall -USR1 gpsdrive
>
> echo "sending "
> cat /tmp/gpsdrivepos
> echo -e "to number $NUMBER\n"
> gnokii --sendsms $NUMBER < /tmp/gpsdrivepos

src/splash.c
>         f = fopen ("/tmp/gpsdrivepos", "w");
>         if (f == NULL)
>         {
>                 perror ("/tmp/gpsdrivepos");
>                 return;
>         }
>         time (&t);
>         ts = localtime (&t);
>         fprintf (f, asctime (ts));
>         fprintf (f, "POS %f %f\n", coords.current_lat, coords.current_lon);
>         fclose (f);

src/unit_test.c:
> g_snprintf (dir_proc, sizeof (dir_proc), "/tmp/gpsdrive-unit-test");
> g_snprintf (dir_proc, sizeof (dir_proc), "/tmp/gpsdrive-unit-test/proc");

Cheers,
-- 
Raphael Geissert - Debian Maintainer
www.debian.org - get.debian.net

Attachment: signature.asc
Description: This is a digitally signed message part.


--- End Message ---
--- Begin Message ---
Source: gpsdrive
Source-Version: 2.10~pre4-6.dfsg-1+lenny1

We believe that the bug you reported is fixed in the latest version of
gpsdrive, which is due to be installed in the Debian FTP archive:

gpsdrive-data_2.10~pre4-6.dfsg-1+lenny1_all.deb
  to pool/main/g/gpsdrive/gpsdrive-data_2.10~pre4-6.dfsg-1+lenny1_all.deb
gpsdrive-scripts_2.10~pre4-6.dfsg-1+lenny1_all.deb
  to pool/main/g/gpsdrive/gpsdrive-scripts_2.10~pre4-6.dfsg-1+lenny1_all.deb
gpsdrive_2.10~pre4-6.dfsg-1+lenny1.diff.gz
  to pool/main/g/gpsdrive/gpsdrive_2.10~pre4-6.dfsg-1+lenny1.diff.gz
gpsdrive_2.10~pre4-6.dfsg-1+lenny1.dsc
  to pool/main/g/gpsdrive/gpsdrive_2.10~pre4-6.dfsg-1+lenny1.dsc
gpsdrive_2.10~pre4-6.dfsg-1+lenny1_i386.deb
  to pool/main/g/gpsdrive/gpsdrive_2.10~pre4-6.dfsg-1+lenny1_i386.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 508...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Andreas Putzo <andr...@putzo.net> (supplier of updated gpsdrive package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Mon, 29 Dec 2008 16:08:22 +0000
Source: gpsdrive
Binary: gpsdrive gpsdrive-data gpsdrive-scripts
Architecture: source i386 all
Version: 2.10~pre4-6.dfsg-1+lenny1
Distribution: testing-proposed-updates
Urgency: low
Maintainer: Debian GIS Project <pkg-grass-devel@lists.alioth.debian.org>
Changed-By: Andreas Putzo <andr...@putzo.net>
Description: 
 gpsdrive   - Car navigation system
 gpsdrive-data - Car navigation system
 gpsdrive-scripts - Various scripts for gpsdrive
Closes: 508596 508597
Changes: 
 gpsdrive (2.10~pre4-6.dfsg-1+lenny1) testing-proposed-updates; urgency=low
 .
   * Remove example script gpssmswatch. Prone to symlink attacks
     and removed upstream.
   * Added 101-signalposreq.dpatch to remove signalposreq() from
     gpsdrive to fix a potential symlink vulnerability. Removed
     unused unlinks of temporary files (Closes: #508597,#508596).
   * Added 102-unittest.dpatch to use mkdtemp in src/unit_test.c to
     fix a symlink vulnerability.
   * Updated patch for geo-code to avoid a potential race condition
     (CVE-2008-5380).
Checksums-Sha1: 
 b4230f83fbb04b87fce960bbea2103eabb0b9cb2 1607 
gpsdrive_2.10~pre4-6.dfsg-1+lenny1.dsc
 6e3ece77e70883b80cdf57caac10a7861ac7aa7c 54233 
gpsdrive_2.10~pre4-6.dfsg-1+lenny1.diff.gz
 48020fe79c9ab20763c92c32c78106d753ded402 273202 
gpsdrive_2.10~pre4-6.dfsg-1+lenny1_i386.deb
 b119d99dd94c94d99d7bccc931a2438e1b46a81b 2576844 
gpsdrive-data_2.10~pre4-6.dfsg-1+lenny1_all.deb
 237dc2fa465c2aecb6fcf7a266204084e103e7d9 150972 
gpsdrive-scripts_2.10~pre4-6.dfsg-1+lenny1_all.deb
Checksums-Sha256: 
 c2692743c6771028ab10f8e8e4900b354ce7ca9be98fe5a4c4e8de1ddcc8674c 1607 
gpsdrive_2.10~pre4-6.dfsg-1+lenny1.dsc
 167939f9499734382e0479251f6a8804c3f51ce96b9e981e912b516a548673dc 54233 
gpsdrive_2.10~pre4-6.dfsg-1+lenny1.diff.gz
 f1e80dde001d901e5e64f8cdc9276830c976bce5b051a965a7ac549d78bf7eb1 273202 
gpsdrive_2.10~pre4-6.dfsg-1+lenny1_i386.deb
 c60b08ff4239593113a5dce58e8d247c63febf701c8676474fddcb6ea88fdf10 2576844 
gpsdrive-data_2.10~pre4-6.dfsg-1+lenny1_all.deb
 e6919d5924810da66fac2a82f27b6a3758489d323de85a1462a536ff1a333528 150972 
gpsdrive-scripts_2.10~pre4-6.dfsg-1+lenny1_all.deb
Files: 
 09533fdc74a102ea3b5ce02c7851eae6 1607 utils optional 
gpsdrive_2.10~pre4-6.dfsg-1+lenny1.dsc
 7d94a0a30dcb19b8ac2651532b74b9d5 54233 utils optional 
gpsdrive_2.10~pre4-6.dfsg-1+lenny1.diff.gz
 f2022f502ea978393894bd8e52e98421 273202 utils optional 
gpsdrive_2.10~pre4-6.dfsg-1+lenny1_i386.deb
 c84db0ce41425c7c5c9fcd0a3b4e35a5 2576844 utils optional 
gpsdrive-data_2.10~pre4-6.dfsg-1+lenny1_all.deb
 7b091c7322c98cf4ec80154868975d3e 150972 utils optional 
gpsdrive-scripts_2.10~pre4-6.dfsg-1+lenny1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkmHaHUACgkQHyt6sgW5nda0sQCfSFrYjvJtlhX/jnZvTS00WsN0
xp0Anjs4JdpuM2/WEIVRLrTM8o/gFcMv
=X+Ru
-----END PGP SIGNATURE-----



--- End Message ---
_______________________________________________
Pkg-grass-devel mailing list
Pkg-grass-devel@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/pkg-grass-devel

Reply via email to