FrSIRT - Mandriva Security Update Fixes Xfs Command Execution Vulnerabilities / Exploit (Security Advisories)

French Security Incident Response Team

French

English

Mandriva Security Update Fixes Xfs Command Execution Vulnerabilities

Title : Mandriva Security Update Fixes Xfs Command Execution Vulnerabilities
Advisory ID : FrSIRT/ADV-2007-3758
CVE ID : CVE-2007-4568 - CVE-2007-4990
Rated as : Moderate Risk

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-11-07

Advisory Details

Description

Affected Products

Solution

References

Technical Description

Multiple vulnerabilities have been idenitified in Mandriva, which could be exploited by attackers to cause a denial of service or execute arbitrary code [...]

Solution

Upgrade the affected packages :

Mandriva Linux 2007.0:
21577d9fef7ac045d14cecab380d6a04 2007.0/i586/xfs-1.0.2-13.1mdv2007.0.i586.rpm
d45b4bc4ce1d33ae435c67daf6efa400 2007.0/SRPMS/xfs-1.0.2-13.1mdv2007.0.src.rpm

Mandriva Linux 2007.0/X86_64:
58c165973eb6df6f262bf23f5cbd80ba 2007.0/x86_64/xfs-1.0.2-13.1mdv2007.0.x86_64.rpm
d45b4bc4ce1d33ae435c67daf6efa400 2007.0/SRPMS/xfs-1.0.2-13.1mdv2007.0.src.rpm

Mandriva Linux 2007.1:
f73dea74c26fe8e0611b23821e433531 2007.1/i586/xfs-1.0.4-2.1mdv2007.1.i586.rpm
5dd43d23c5fed11c45378481a727637a 2007.1/SRPMS/xfs-1.0.4-2.1mdv2007.1.src.rpm

Mandriva Linux 2007.1/X86_64:
ad3cae19550a54c895efedea7032a3cb 2007.1/x86_64/xfs-1.0.4-2.1mdv2007.1.x86_64.rpm
5dd43d23c5fed11c45378481a727637a 2007.1/SRPMS/xfs-1.0.4-2.1mdv2007.1.src.rpm

Corporate 3.0:
1dd2d97460752a1b300c706d93f140d1 corporate/3.0/i586/X11R6-contrib-4.3-32.14.C30mdk.i586.rpm
316164ba32538409428ce18edc644482 corporate/3.0/i586/XFree86-100dpi-fonts-4.3-32.14.C30mdk.i586.rpm
9e614219a1af764b5525a8178326e5c5 corporate/3.0/i586/XFree86-4.3-32.14.C30mdk.i586.rpm
217941a341643324278dc00d6b28f811 corporate/3.0/i586/XFree86-75dpi-fonts-4.3-32.14.C30mdk.i586.rpm
9507389b32a370f73de2688055f442de corporate/3.0/i586/XFree86-Xnest-4.3-32.14.C30mdk.i586.rpm
64257ccc6c62660ab507e54f0aade452 corporate/3.0/i586/XFree86-Xvfb-4.3-32.14.C30mdk.i586.rpm
9932134b6f5cd1f0b4b42af00b2d0c19 corporate/3.0/i586/XFree86-cyrillic-fonts-4.3-32.14.C30mdk.i586.rpm
a869f06221d4798001b5e0730e07f5d4 corporate/3.0/i586/XFree86-doc-4.3-32.14.C30mdk.i586.rpm
a88e481c01667fe7b959997a82f308af corporate/3.0/i586/XFree86-glide-module-4.3-32.14.C30mdk.i586.rpm
f989fbe1aaeb563e7aa3937afc0b3c2e corporate/3.0/i586/XFree86-server-4.3-32.14.C30mdk.i586.rpm
c3fcc3cbf418d72458eb1b3519df6128 corporate/3.0/i586/XFree86-xfs-4.3-32.14.C30mdk.i586.rpm
3b50f12dffa4954b04a1afd72ffd33fb corporate/3.0/i586/libxfree86-4.3-32.14.C30mdk.i586.rpm
73dc00eb6eef1569ac15bf21e3ef5a46 corporate/3.0/i586/libxfree86-devel-4.3-32.14.C30mdk.i586.rpm
5d2d5571bb25d30da8fed656316b0119 corporate/3.0/i586/libxfree86-static-devel-4.3-32.14.C30mdk.i586.rpm
4b161e98248c3609c592923cfc61ee6c corporate/3.0/SRPMS/XFree86-4.3-32.14.C30mdk.src.rpm

Corporate 3.0/X86_64:
1ba6de4e92648fa32baf2816fd6f3c88 corporate/3.0/x86_64/X11R6-contrib-4.3-32.14.C30mdk.x86_64.rpm
4c0da3e2ce7950f5b9a44f5e7fd494a0 corporate/3.0/x86_64/XFree86-100dpi-fonts-4.3-32.14.C30mdk.x86_64.rpm
bc0929571d98237f97bc20657ecef53a corporate/3.0/x86_64/XFree86-4.3-32.14.C30mdk.x86_64.rpm
608c78bc7c6d0664261b6fb92fe6ac30 corporate/3.0/x86_64/XFree86-75dpi-fonts-4.3-32.14.C30mdk.x86_64.rpm
986107647d3c9d420fca8fbcc8adf59f corporate/3.0/x86_64/XFree86-Xnest-4.3-32.14.C30mdk.x86_64.rpm
208183ffb9e903e1daaac88a7bbd187f corporate/3.0/x86_64/XFree86-Xvfb-4.3-32.14.C30mdk.x86_64.rpm
4cb369ef6917e128e12fdb15879d541e corporate/3.0/x86_64/XFree86-cyrillic-fonts-4.3-32.14.C30mdk.x86_64.rpm
b93c13ae721849fa369b85600d7adfd0 corporate/3.0/x86_64/XFree86-doc-4.3-32.14.C30mdk.x86_64.rpm
249822b05377c3235ddd6f102f318430 corporate/3.0/x86_64/XFree86-server-4.3-32.14.C30mdk.x86_64.rpm
6dd115f2aa4c969b1826876d9fe5d63f corporate/3.0/x86_64/XFree86-xfs-4.3-32.14.C30mdk.x86_64.rpm
87089390ff5f4c324aa0082335bda9e8 corporate/3.0/x86_64/lib64xfree86-4.3-32.14.C30mdk.x86_64.rpm
c57ed444262fbe52c4dbf0e9f939b0fd corporate/3.0/x86_64/lib64xfree86-devel-4.3-32.14.C30mdk.x86_64.rpm
ba95772e6f5189088f6b07768ac24ddf corporate/3.0/x86_64/lib64xfree86-static-devel-4.3-32.14.C30mdk.x86_64.rpm
4b161e98248c3609c592923cfc61ee6c corporate/3.0/SRPMS/XFree86-4.3-32.14.C30mdk.src.rpm

Corporate 4.0:
ef79d0cbe2d7c5621b08ef969f0c1aca corporate/4.0/i586/X11R6-contrib-6.9.0-5.16.20060mlcs4.i586.rpm
751bad32e2d6ac87dbeb0b9fc815c4c1 corporate/4.0/i586/libxorg-x11-6.9.0-5.16.20060mlcs4.i586.rpm
d25eb7bceacb1a7c6d72c1393ada1e36 corporate/4.0/i586/libxorg-x11-devel-6.9.0-5.16.20060mlcs4.i586.rpm
a6be13009f62f195fd4bfbed29e1f542 corporate/4.0/i586/libxorg-x11-static-devel-6.9.0-5.16.20060mlcs4.i586.rpm
dbb84b20f86d7fb8cf1ca897aa7ac08f corporate/4.0/i586/xorg-x11-100dpi-fonts-6.9.0-5.16.20060mlcs4.i586.rpm
29c8d2dbce66ce0dff7886bb39f2ab54 corporate/4.0/i586/xorg-x11-6.9.0-5.16.20060mlcs4.i586.rpm
ffd9c3dfc821d762f0701e54c643a6d2 corporate/4.0/i586/xorg-x11-75dpi-fonts-6.9.0-5.16.20060mlcs4.i586.rpm
924958f5cb459abb36e920f29acd96a6 corporate/4.0/i586/xorg-x11-Xdmx-6.9.0-5.16.20060mlcs4.i586.rpm
8d21907a4c5c98db3d1c107e1685ba8a corporate/4.0/i586/xorg-x11-Xnest-6.9.0-5.16.20060mlcs4.i586.rpm
a6a822349e4ad69948e85cf8170de3b5 corporate/4.0/i586/xorg-x11-Xprt-6.9.0-5.16.20060mlcs4.i586.rpm
2acc0570bbfb3c6a64f2cb10f2975af0 corporate/4.0/i586/xorg-x11-Xvfb-6.9.0-5.16.20060mlcs4.i586.rpm
153150b6bb867058fe9dc317f1d70b9d corporate/4.0/i586/xorg-x11-cyrillic-fonts-6.9.0-5.16.20060mlcs4.i586.rpm
d21ee1d7e9d2874b4db950c7326bdfc9 corporate/4.0/i586/xorg-x11-doc-6.9.0-5.16.20060mlcs4.i586.rpm
895e011f3ee5ce512e429d8a838d9485 corporate/4.0/i586/xorg-x11-glide-module-6.9.0-5.16.20060mlcs4.i586.rpm
a594bf547804f504fdcab5421b1ea6f2 corporate/4.0/i586/xorg-x11-server-6.9.0-5.16.20060mlcs4.i586.rpm
fbaa268d36d81c5beb6a0681dd482095 corporate/4.0/i586/xorg-x11-xauth-6.9.0-5.16.20060mlcs4.i586.rpm
e450494d7a103233a20bb4793daf5237 corporate/4.0/i586/xorg-x11-xfs-6.9.0-5.16.20060mlcs4.i586.rpm
ece261e302ed0dc227583c687d397612 corporate/4.0/SRPMS/xorg-x11-6.9.0-5.16.20060mlcs4.src.rpm

Corporate 4.0/X86_64:
6f36c441864d33a5680bab26a9ecca0f corporate/4.0/x86_64/X11R6-contrib-6.9.0-5.16.20060mlcs4.x86_64.rpm
25d24d2c61f6ceb40b86d7bbd7e80f7b corporate/4.0/x86_64/lib64xorg-x11-6.9.0-5.16.20060mlcs4.x86_64.rpm
41feffaed15eb24da21e563b26f19e2a corporate/4.0/x86_64/lib64xorg-x11-devel-6.9.0-5.16.20060mlcs4.x86_64.rpm
d13e85c6c95f099f39ecc4a06e41063c corporate/4.0/x86_64/lib64xorg-x11-static-devel-6.9.0-5.16.20060mlcs4.x86_64.rpm
97c5716329d954a2d6ed071b6cb21b47 corporate/4.0/x86_64/xorg-x11-100dpi-fonts-6.9.0-5.16.20060mlcs4.x86_64.rpm
efd795d5ae67ae5f2fb465a12d9e6fab corporate/4.0/x86_64/xorg-x11-6.9.0-5.16.20060mlcs4.x86_64.rpm
562ee0687920068cc2add2a121a62c49 corporate/4.0/x86_64/xorg-x11-75dpi-fonts-6.9.0-5.16.20060mlcs4.x86_64.rpm
da5f39e73a9aeee548c265c412231dd8 corporate/4.0/x86_64/xorg-x11-Xdmx-6.9.0-5.16.20060mlcs4.x86_64.rpm
27d95e9a5bb335d31ddb515d330b7d6a corporate/4.0/x86_64/xorg-x11-Xnest-6.9.0-5.16.20060mlcs4.x86_64.rpm
c67ee1e79b971e398d0765cc443835c9 corporate/4.0/x86_64/xorg-x11-Xprt-6.9.0-5.16.20060mlcs4.x86_64.rpm
7d92729584524024f172f2b7acb14563 corporate/4.0/x86_64/xorg-x11-Xvfb-6.9.0-5.16.20060mlcs4.x86_64.rpm
f58f5c7bc53e47751a670a08a207036b corporate/4.0/x86_64/xorg-x11-cyrillic-fonts-6.9.0-5.16.20060mlcs4.x86_64.rpm
03b8b69a7ae9ee061fc0d057f0279b98 corporate/4.0/x86_64/xorg-x11-doc-6.9.0-5.16.20060mlcs4.x86_64.rpm
f38eaddfc7f99c3b3206d8c9594bff85 corporate/4.0/x86_64/xorg-x11-glide-module-6.9.0-5.16.20060mlcs4.x86_64.rpm
736b4fcc2e3a2f085fed511ddcc780f4 corporate/4.0/x86_64/xorg-x11-server-6.9.0-5.16.20060mlcs4.x86_64.rpm
58e2cb309bfbc5f93aa4ebd96ccd99b5 corporate/4.0/x86_64/xorg-x11-xauth-6.9.0-5.16.20060mlcs4.x86_64.rpm
9bde01cd650a7e0cf35366150b4fda22 corporate/4.0/x86_64/xorg-x11-xfs-6.9.0-5.16.20060mlcs4.x86_64.rpm
ece261e302ed0dc227583c687d397612 corporate/4.0/SRPMS/xorg-x11-6.9.0-5.16.20060mlcs4.src.rpm

ChangeLog

2007-11-07 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.

Mailinglist

	Cisco Unity Security Bypass and Denial of Service
	Cisco UCM SIP Remote Denial of Service
	Cisco IOS Denial of Service and Security Bypass Vulnerabilities
	Cisco PIX and ASA Information Disclosure and DoS Vulnerabilities
	Cisco Secure ACS EAP Remote Denial Of Service Vulnerability
	Cisco Products Remote DNS Cache Poisoning Vulnerability
	Cisco Wide Area Application Services CUPS Remote Vulnerability

	Sun Java System Web Proxy Server FTP Heap Overflow
	Sun Solaris ACL UFS File Systems Denial of Service Vulnerability
	Sun Solaris Text Editors Tag Files Local Code Execution Vulnerability
	Sun Management Center Remote Denial of Service Vulnerability
	Sun Solaris Bzip2 Archive Handling Denial of Service Vulnerability
	Sun Solaris GNU Tar Headers Handling Buffer Overflow Vulnerability
	Sun Solaris Covert Channel Local Security Bypass Vulnerability

	IBM Lotus Quickr Denial of Service and Security Bypass Vulnerabilities
	IBM Tivoli Netcool/Webtop Multiple Security Bypass Vulnerabilities
	IBM WebSphere Application Server Security Exposure Vulnerabilities
	IBM DB2 Universal Database Multiple Denial of Service
	IBM AIX "swcons" Insecure Permission Privilege Escalation Vulnerability
	IBM WebSphere Application Server Cross Site Scripting Vulnerability
	IBM DB2 CLR Stored Procedures Unspecified Vulnerability