-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
--------------------------------------------------------------------------
Turbolinux Security Advisory TLSA-2003-20
http://www.turbolinux.co.jp/security/
security-team@turbolinux.co.jp
--------------------------------------------------------------------------
Original released date : 25 Mar 2003
Last revised : 12 Sep 2003
Package : man
Summry : Vulnerability in man
More information :
A vulnerability is in my_xsprintf function to return a code which is
passed directly to system.
Impact :
When a specific file was read by man command, the third party may be
able to execute arbitrary shell command.
Affected Products :
- Turbolinux 8 Server
- Turbolinux 8 Workstation
- Turbolinux 7 Server
- Turbolinux 7 Workstation
- Turbolinux Server 6.5
- Turbolinux Advanced Server 6
- Turbolinux Server 6.1
- Turbolinux Workstation 6.0
Solution :
Please use turbopkg tool to apply the update.
<Turbolinux 8 Server>
Source Packages
Size : MD5
man-1.5i2-7.src.rpm
220830 28633942864d8c3c0c57913ef632373e
Binary Packages
Size : MD5
man-1.5i2-7.i586.rpm
78448 bcd3b75c8879365cd1f3e9e4d1b1c737
<Turbolinux 8 Workstation>
Source Packages
Size : MD5
man-1.5i2-7.src.rpm
220830 3e0da196dfd211d8534f9db1ba46b0c5
Binary Packages
Size : MD5
man-1.5i2-7.i586.rpm
78448 ec007a081f09c2f5bf35fc5ee2987eea
<Turbolinux 7 Server>
Source Packages
Size : MD5
man-1.5i2-7.src.rpm
220830 aa7737c7d60f3861a1acb2149fa0f124
Binary Packages
Size : MD5
man-1.5i2-7.i586.rpm
78419 0f2bf137f0bf79dc6d746dc315f76269
<Turbolinux 7 Workstation>
Source Packages
Size : MD5
man-1.5i2-7.src.rpm
220830 73f28dac74319cd1b130b54bed165c5e
Binary Packages
Size : MD5
man-1.5i2-7.i586.rpm
78485 b9837858ab7c49d621ef9d1935cf581e
<Turbolinux Server 6.5>
Source Packages
Size : MD5
groff-1.17.2-3.src.rpm
1635503 7aff90e9d7106c2db9094fa482265048
man-1.5i2-7.src.rpm
220830 01b7517c5e8bd62c76064fa67f960c2c
mktemp-1.5-6.src.rpm
9142 0391074872bb7b75398c4314d5e67e19
Binary Packages
Size : MD5
groff-1.17.2-3.i386.rpm
1684843 90b6b03d28e22935cad932cd0b25aa31
groff-gxditview-1.17.2-3.i386.rpm
29627 3281cd73594fa34d3dacab8403bc91f2
groff-perl-1.17.2-3.i386.rpm
15606 2543cf93d8c2ee734f10dfaefb3bb185
man-1.5i2-7.i386.rpm
93913 a98fbd97d36a5b3982b57dc953f25c94
mktemp-1.5-6.i386.rpm
7485 9bc97c51a8dd7e0dcbc3f3842a9a3233
<Turbolinux Advanced Server 6>
Source Packages
Size : MD5
groff-1.17.2-3.src.rpm
1635503 8e3bd051efa1b33754d7594df6343ef3
man-1.5i2-7.src.rpm
220830 759c33d181fc1b51313cc66fbd98200a
mktemp-1.5-6.src.rpm
9142 0391074872bb7b75398c4314d5e67e19
Binary Packages
Size : MD5
groff-1.17.2-3.i386.rpm
1684754 72a5ea72e3fb8a83fce96d9b10e2f3bf
groff-gxditview-1.17.2-3.i386.rpm
29624 ca8b73e80d2d9b6aacd75633047117b2
groff-perl-1.17.2-3.i386.rpm
15591 9f9bcdec46e557c4df5e0fce603297c3
man-1.5i2-7.i386.rpm
93910 cc2a1c1e9a4c113f20886d3784e43491
mktemp-1.5-6.i386.rpm
7482 4e837913e61c00bc6a0bd2b544b0b780
<Turbolinux Server 6.1>
Source Packages
Size : MD5
groff-1.17.2-3.src.rpm
1635503 288ce96b8d079e58ec9171f2e6a786ed
man-1.5i2-7.src.rpm
220830 d70bd9285ee297d5b8c076de640e7eee
mktemp-1.5-6.src.rpm
9142 0391074872bb7b75398c4314d5e67e19
Binary Packages
Size : MD5
groff-1.17.2-3.i386.rpm
1684909 728cc1577323094e991c44bd5b77ed74
groff-gxditview-1.17.2-3.i386.rpm
29632 e803de8ad0b5f23dfcdaad7dd313e1bb
groff-perl-1.17.2-3.i386.rpm
15602 a82e11f078ffa8f581862bd8cd853374
man-1.5i2-7.i386.rpm
93934 c8da3bddb66ae096d5f3835a5b0259fd
mktemp-1.5-6.i386.rpm
7484 1d3a4b47de1b29a8da6504fbc9efec95
<Turbolinux Workstation 6.0>
Source Packages
Size : MD5
groff-1.17.2-3.src.rpm
1635503 2a92d2975f6dc6148631111ca4de758e
man-1.5i2-7.src.rpm
220830 e6b24e4b88068c4d2332f5791b956ee4
mktemp-1.5-6.src.rpm
9142 0391074872bb7b75398c4314d5e67e19
Binary Packages
Size : MD5
groff-1.17.2-3.i386.rpm
1684850 112df882af54da1f42c348c9ea004427
groff-gxditview-1.17.2-3.i386.rpm
29623 d15f2fe00291bc98794c054bf95bdf39
groff-perl-1.17.2-3.i386.rpm
15598 c8ac6b01213ef9f6c3fe5462d23939e2
man-1.5i2-7.i386.rpm
93913 d89632f7febdff91f0c8ec07f24030eb
mktemp-1.5-6.i386.rpm
7482 af38bde8fc6ed13afa0df9098c9a39e3
References :
CVE
[
CAN-2003-0124]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=
CAN-2003-0124
--------------------------------------------------------------------------
Revision History
25 Mar 2003 Initial release
26 Mar 2003 modifyed Impact section
12 Sep 2003 added mktemp packages (TLS65,TLAS6,TLS61,TLW60)
--------------------------------------------------------------------------
Copyright(C) 2003 Turbolinux, Inc. All rights reserved.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
iD8DBQE/YTSdK0LzjOqIJMwRAvplAJ9hwniBtr1WFFIVQfSvyG7Y/WnMywCgiBvz
2cZH6LFi188XJ6ufb1fpuWw=
=K5+K
-----END PGP SIGNATURE-----