Operating System:

Published:

11 October 2005

Protect yourself against future threats.

//Service

Security Bulletins

Receive up to date and consistent security bulletins across a wide range of vendors, streamlining security patching.

Read more
Resources > Security Bulletins > ESB-2005.0797 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================================
             AUSCERT External Security Bulletin Redistribution

            ESB-2005.0797 -- Debian Security Advisory DSA 859-1
               New xli packages fix arbitrary code execution
                              11 October 2005

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:           xli
Publisher:         Debian
Operating System:  Debian GNU/Linux 3.1
                   Debian GNU/Linux 3.0
                   UNIX variants
Impact:            Execute Arbitrary Code/Commands
Access:            Remote/Unauthenticated
CVE Names:         CAN-2005-3178

Original Bulletin: http://www.debian.org/security/2005/dsa-859

Comment: This advisory references vulnerabilities in products which run on
         platforms other than Debian. It is recommended that administrators
         running xli check for an updated version of the software for their
         operating system.

- --------------------------BEGIN INCLUDED TEXT--------------------

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - --------------------------------------------------------------------------
Debian Security Advisory DSA 859-1                     security@debian.org
http://www.debian.org/security/                             Martin Schulze
October 10th, 2005                      http://www.debian.org/security/faq
- - --------------------------------------------------------------------------

Package        : xli
Vulnerability  : buffer overflows
Problem type   : local (remote)
Debian-specific: no
CVE ID         : CAN-2005-3178
Debian Bug     : 332524

Ariel Berkman discovered several buffer overflows in xloadimage, which
are also present in xli, a command line utility for viewing images in
X11, and could be exploited via large image titles and cause the
execution of arbitrary code.

For the old stable distribution (woody) these problems have been fixed in
version 1.17.0-11woody2.

For the stable distribution (sarge) these problems have been fixed in
version 1.17.0-18sarge1.

For the unstable distribution (sid) these problems will be fixed soon.

We recommend that you upgrade your xli package.


Upgrade Instructions
- - --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.0 alias woody
- - --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-11woody2.dsc
      Size/MD5 checksum:      620 0276fa4de8addea1ba22891082860983
    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-11woody2.diff.gz
      Size/MD5 checksum:    17956 71eaa54284c5a94cd1da8eeb84640158
    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0.orig.tar.gz
      Size/MD5 checksum:   200070 504f916c9a7d062c8f856f1625634ba8

  Alpha architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-11woody2_alpha.deb
      Size/MD5 checksum:   173180 ba2b9b41fa851741ea382df36b26ead5

  ARM architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-11woody2_arm.deb
      Size/MD5 checksum:   143240 bb55d1eb150836db14551c04cb0b15fc

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-11woody2_i386.deb
      Size/MD5 checksum:   137188 17e8de575f30f20cbe8292d1ff899729

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-11woody2_ia64.deb
      Size/MD5 checksum:   210274 622334c2eb4efa212fd78282a688f0e2

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-11woody2_hppa.deb
      Size/MD5 checksum:   158510 7ab39258d6c4f55e98fe4d7fe7dc81dc

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-11woody2_m68k.deb
      Size/MD5 checksum:   128356 42de21e615cd7a4b622e388b418ed2e3

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-11woody2_mips.deb
      Size/MD5 checksum:   149176 0cea90548325feb1f50b2f28f35c200e

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-11woody2_mipsel.deb
      Size/MD5 checksum:   149818 5a5d0f95b11da6a778ec98860e82cc4c

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-11woody2_powerpc.deb
      Size/MD5 checksum:   143426 1e28cdcecad96ef5b829eaa95f259c40

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-11woody2_s390.deb
      Size/MD5 checksum:   144772 7f44ced90c12a66de0a84e1788c72f38

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-11woody2_sparc.deb
      Size/MD5 checksum:   146070 a1fce9f8274de0e57fb4a2f450eb811f


Debian GNU/Linux 3.1 alias sarge
- - --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1.dsc
      Size/MD5 checksum:      634 a2fd32a5051dad8dc882897a615b9462
    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1.diff.gz
      Size/MD5 checksum:    20929 313416fd297acf9834132bdaff96f709
    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0.orig.tar.gz
      Size/MD5 checksum:   200070 504f916c9a7d062c8f856f1625634ba8

  Alpha architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1_alpha.deb
      Size/MD5 checksum:   181518 16e84cff74982374df62cc98011df088

  AMD64 architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1_amd64.deb
      Size/MD5 checksum:   150698 8f92258dd675c00ea4c4c2eddb07f5b3

  ARM architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1_arm.deb
      Size/MD5 checksum:   148536 12dd6271ad28a1860423279dd7852259

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1_i386.deb
      Size/MD5 checksum:   146218 33f60fadc36dbf592ffdd9a1a74bd3bf

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1_ia64.deb
      Size/MD5 checksum:   209528 7fa18dbaaf15d0243704128f9b1cebf9

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1_hppa.deb
      Size/MD5 checksum:   160864 61539793dedeae923155793af6c464eb

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1_m68k.deb
      Size/MD5 checksum:   132676 a64f97b331a9e017b68315a2c2b58d36

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1_mips.deb
      Size/MD5 checksum:   159334 f38217f9558ec4c103a0d1c9bfe02bf4

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1_mipsel.deb
      Size/MD5 checksum:   160156 4b32d4438b1995a7cc24976758fb62f1

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1_powerpc.deb
      Size/MD5 checksum:   153006 24b2ee9faa345b0ba56be739fba058da

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1_s390.deb
      Size/MD5 checksum:   154356 7d2c1c3c0ddb85fa15e641f89a931584

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/x/xli/xli_1.17.0-18sarge1_sparc.deb
      Size/MD5 checksum:   145736 3d10b9672a0f48b0b3d06d14060203d5


  These files will probably be moved into the stable distribution on
  its next update.

- - ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFDSq8sW5ql+IAeqTIRArkpAJ9foOWDTsb1As9Wx8nDanOIBuN2wgCdGl7F
HsRkpJZN1wyGoA//uvCUXqs=
=mIUJ
- -----END PGP SIGNATURE-----

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        http://www.auscert.org.au/render.html?cid=1980

If you believe that your computer system has been compromised or attacked in 
any way, we encourage you to let us know by completing the secure National IT 
Incident Reporting Form at:

        http://www.auscert.org.au/render.html?it=3192

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================

-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967

iQCVAwUBQ0sINih9+71yA2DNAQKPGQP/RzjflmDjdDgmEnRisvJXELhUQZJpshK4
jcBni8oakLduDLXwVb3Ui/W8KRCJCZyS391AtxydxMK+/4MVLbSJBzhXEPltWgEr
e/BcocH0MxrJndxqaJcBXzCfb1HZZ/MX0pWdqIwbI9UiwKQj+Hs7gFTOrd1E5+mK
Bn5fzg/LeGs=
=WSTg
-----END PGP SIGNATURE-----