FrSIRT - Mandriva Security Update Fixes Exiv2 "setDataArea()" Integer Overflow / Exploit (Security Advisories)

French Security Incident Response Team

French

English

Mandriva Security Update Fixes Exiv2 "setDataArea()" Integer Overflow

Title : Mandriva Security Update Fixes Exiv2 "setDataArea()" Integer Overflow
Advisory ID : FrSIRT/ADV-2008-0111
CVE ID : CVE-2007-6353
Rated as : Moderate Risk

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2008-01-11

Advisory Details

Description

Affected Products

Solution

References

Technical Description

A vulnerability has been identified in Mandriva, which could be exploited by attackers to cause a denial of service or compromise an affected system [...]

Solution

Upgrade the affected packages :

Mandriva Linux 2007.1:
290bc944bde4ad24657c9ee13d4534fa 2007.1/i586/exiv2-0.13-1.1mdv2007.1.i586.rpm
7614143070ac823195d7336a9655e76d 2007.1/i586/libexiv2-0.13-1.1mdv2007.1.i586.rpm
74450450b9a598a3544e46d2bb4242a9 2007.1/i586/libexiv2-devel-0.13-1.1mdv2007.1.i586.rpm
e212cd2efcb56fbe00e892ebfec25d29 2007.1/SRPMS/exiv2-0.13-1.1mdv2007.1.src.rpm

Mandriva Linux 2007.1/X86_64:
e2eb212bb7bd0a427345ac369cb0c3e4 2007.1/x86_64/exiv2-0.13-1.1mdv2007.1.x86_64.rpm
3c88001c423399c87112be1f90512131 2007.1/x86_64/lib64exiv2-0.13-1.1mdv2007.1.x86_64.rpm
0eed3499a9da4580f93b03e45d793ff1 2007.1/x86_64/lib64exiv2-devel-0.13-1.1mdv2007.1.x86_64.rpm
e212cd2efcb56fbe00e892ebfec25d29 2007.1/SRPMS/exiv2-0.13-1.1mdv2007.1.src.rpm

Mandriva Linux 2008.0:
9b81584225e84a2a5bc08110bb404441 2008.0/i586/exiv2-0.15-2.1mdv2008.0.i586.rpm
014a0adbac5779e8178b77cd5e09a401 2008.0/i586/libexiv2-0.15-2.1mdv2008.0.i586.rpm
acac434936c9d130e0209107e44b01eb 2008.0/i586/libexiv2-devel-0.15-2.1mdv2008.0.i586.rpm
78ea6a6e976bf2c6097bc0a122282434 2008.0/SRPMS/exiv2-0.15-2.1mdv2008.0.src.rpm

Mandriva Linux 2008.0/X86_64:
f9e4cc439fa9444972f7755a7c2cee0d 2008.0/x86_64/exiv2-0.15-2.1mdv2008.0.x86_64.rpm
00ce23b495092284b73d2ec29bbba4cf 2008.0/x86_64/lib64exiv2-0.15-2.1mdv2008.0.x86_64.rpm
d716f5eaebd041364d409569980f1f8b 2008.0/x86_64/lib64exiv2-devel-0.15-2.1mdv2008.0.x86_64.rpm
78ea6a6e976bf2c6097bc0a122282434 2008.0/SRPMS/exiv2-0.15-2.1mdv2008.0.src.rpm

ChangeLog

2008-01-11 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.

Mailinglist

	IBM AIX Multiple Command Local Privilege Escalation Vulnerabilities
	IBM AIX Sendmail Header Lines Denial of Service Vulnerability
	IBM Metrica Multiple Parameter Cross Site Scripting Vulnerabilities
	IBM Lotus Quickr Unspecified Cross Site Scripting Vulnerabilities
	IBM Hardware Management Console Denial of Service Vulnerability
	IBM Tivoli Storage Manager Client Buffer Overflow Vulnerability
	IBM DB2 Denial of Service and Information Disclosure Vulnerabilities

	Microsoft XML Core Services Multiple Remote Vulnerabilities (MS08-069)
	Microsoft Windows SMB Credential Reflection Vulnerability (MS08-068)
	Microsoft Windows Server Service Vulnerability (MS08-067)
	Microsoft Windows "afd.sys" Privilege Escalation Vulnerability (MS08-066)
	Microsoft Windows MSMQ Code Execution Vulnerability (MS08-065)
	Microsoft Windows VADs Privilege Escalation Vulnerability (MS08-064)
	Microsoft Windows SMB Code Execution Vulnerability (MS08-063)

	Apple iPhone and iPod touch Multiple Code Execution Vulnerabilities
	Apple Safari Code Execution and Security Bypass Vulnerabilities
	Apple iLife and Aperture Image Handling Code Execution Vulnerabilities
	Apple Mac OS X Code Execution and Security Bypass Vulnerabilities
	Apple TV Multiple File Processing Code Execution Vulnerabilities
	Apple Mac OS X Code Execution and Security Bypass Vulnerabilities
	Apple iPhone Code Execution and Security Bypass Vulnerabilities