Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
===========================================================================
AUSCERT External Security Bulletin Redistribution
ESB-2009.0087 -- [UNIX/Linux][Debian]
New ganglia-monitor-core packages fix remote code execution
27 January 2009
===========================================================================
AusCERT Security Bulletin Summary
---------------------------------
Product: ganglia-monitor-core
Publisher: Debian
Operating System: Debian GNU/Linux 4.0
UNIX variants (UNIX, Linux, OSX)
Impact: Execute Arbitrary Code/Commands
Access: Remote/Unauthenticated
CVE Names: CVE-2009-0241
Original Bulletin: http://www.debian.org/security/2009/dsa-1710
Comment: This advisory references vulnerabilities in products which run on
platforms other than Debian. It is recommended that administrators
running ganglia-monitor-core check for an updated version of the
software for their operating system.
- --------------------------BEGIN INCLUDED TEXT--------------------
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- - ------------------------------------------------------------------------
Debian Security Advisory DSA-1710-1 security@debian.org
http://www.debian.org/security/ Steffen Joeris
January 25, 2009 http://www.debian.org/security/faq
- - ------------------------------------------------------------------------
Package : ganglia-monitor-core
Vulnerability : buffer overflow
Problem type : remote
Debian-specific: no
CVE Id : CVE-2009-0241
Spike Spiegel discovered a stack-based buffer overflow in gmetad, the
meta-daemon for the ganglia cluster monitoring toolkit, which could be
triggered via a request with long path names and might enable
arbitrary code execution.
For the stable distribution (etch), this problem has been fixed in
version 2.5.7-3.1etch1.
For the unstable distribution (sid) this problem has been fixed in
version 2.5.7-5.
For the testing distribution (lenny), this problem will be fixed soon.
We recommend that you upgrade your ganglia-monitor-core packages.
Upgrade instructions
- - --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- - -------------------------------
Source archives:
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/ganglia-monitor-core_2.5.7.orig.tar.gz
Size/MD5 checksum: 508535 7b312d76d3f2d0cfe0bafee876337040
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/ganglia-monitor-core_2.5.7-3.1etch1.diff.gz
Size/MD5 checksum: 316476 052c6ae45b1d114616ae8a4d04530cfe
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/ganglia-monitor-core_2.5.7-3.1etch1.dsc
Size/MD5 checksum: 759 cf4c7357786fd423ee1c04a936dfc389
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1-dev_2.5.7-3.1etch1_alpha.deb
Size/MD5 checksum: 150882 e0450d50127c267dbb97d3f27b41603a
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/gmetad_2.5.7-3.1etch1_alpha.deb
Size/MD5 checksum: 111420 5050aa958bd47ca0202f782989a3f662
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1_2.5.7-3.1etch1_alpha.deb
Size/MD5 checksum: 106024 204e913ca281f7698d94c28e0b53fa7d
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/ganglia-monitor_2.5.7-3.1etch1_alpha.deb
Size/MD5 checksum: 168450 5476515111a428a8e13c27437ef9f18c
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/gmetad_2.5.7-3.1etch1_amd64.deb
Size/MD5 checksum: 102418 e4f43cb6911e3b8ebcd38dd400698c70
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1-dev_2.5.7-3.1etch1_amd64.deb
Size/MD5 checksum: 132094 ea40ef93a55598d06bbebd6ca297371b
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1_2.5.7-3.1etch1_amd64.deb
Size/MD5 checksum: 98228 c7694aad20a0c47144fcf9ed3a8c7005
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/ganglia-monitor_2.5.7-3.1etch1_amd64.deb
Size/MD5 checksum: 153468 c3b2b87c5ccc506aa5294ca7fe4c5c65
arm architecture (ARM)
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/gmetad_2.5.7-3.1etch1_arm.deb
Size/MD5 checksum: 92476 58bbe3b2bab165d03c0b4042152b558c
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1_2.5.7-3.1etch1_arm.deb
Size/MD5 checksum: 88620 7eeb57376971a530a8630a31d428f63f
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1-dev_2.5.7-3.1etch1_arm.deb
Size/MD5 checksum: 119844 8b79fdc26c8d936ae851e3eae7782644
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/ganglia-monitor_2.5.7-3.1etch1_arm.deb
Size/MD5 checksum: 138300 60bd39e5a8c5591d2c81e450a6b410ad
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1_2.5.7-3.1etch1_i386.deb
Size/MD5 checksum: 93078 93bcce44d781f9b6338e563f335487a5
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/gmetad_2.5.7-3.1etch1_i386.deb
Size/MD5 checksum: 95864 364689bae05cead30438b1f58ed39254
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/ganglia-monitor_2.5.7-3.1etch1_i386.deb
Size/MD5 checksum: 141914 1e81a8e3a078e0fbf6c24ced266452d7
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1-dev_2.5.7-3.1etch1_i386.deb
Size/MD5 checksum: 121784 90d9f37ab637f28b48a6fb6f0b998e23
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/ganglia-monitor_2.5.7-3.1etch1_ia64.deb
Size/MD5 checksum: 204472 b1381b653dff2b87daaf4be97a45f523
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1-dev_2.5.7-3.1etch1_ia64.deb
Size/MD5 checksum: 169130 b55ac84f462f0ce2c5f7a3b69e31c24b
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1_2.5.7-3.1etch1_ia64.deb
Size/MD5 checksum: 132798 81d721a3aeecc8bb06cf73f48c874acd
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/gmetad_2.5.7-3.1etch1_ia64.deb
Size/MD5 checksum: 139732 2e54700f561f2ed7b8f1acb64686a679
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/ganglia-monitor_2.5.7-3.1etch1_mips.deb
Size/MD5 checksum: 157022 a4cac1b65b108a0848d884346b10ce7c
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/gmetad_2.5.7-3.1etch1_mips.deb
Size/MD5 checksum: 102688 6c38d2ee954774a593d39d90d85c575d
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1_2.5.7-3.1etch1_mips.deb
Size/MD5 checksum: 93896 c1bc5171b0f7f27590f4109e1d28d0ac
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1-dev_2.5.7-3.1etch1_mips.deb
Size/MD5 checksum: 139260 fd6f02c8c7ccb9f218f935daf71fc9af
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/gmetad_2.5.7-3.1etch1_mipsel.deb
Size/MD5 checksum: 102698 14d9237049c3ccd5de3d504fb65992e4
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1_2.5.7-3.1etch1_mipsel.deb
Size/MD5 checksum: 93616 a23da8a30c21eb50446b9d58b1f5eaab
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/ganglia-monitor_2.5.7-3.1etch1_mipsel.deb
Size/MD5 checksum: 156598 5b9220d4cc415af615bc4af2777baf88
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1-dev_2.5.7-3.1etch1_mipsel.deb
Size/MD5 checksum: 137144 7b3962d8709ea301700146dba7598d0d
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/ganglia-monitor_2.5.7-3.1etch1_powerpc.deb
Size/MD5 checksum: 147760 7f28b6ff0bda4b8f6be940426d199ed0
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1-dev_2.5.7-3.1etch1_powerpc.deb
Size/MD5 checksum: 141300 e5fb16a7d657268026cfbfcde3673c66
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1_2.5.7-3.1etch1_powerpc.deb
Size/MD5 checksum: 95804 d503894a79aab87327f95c52adad7245
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/gmetad_2.5.7-3.1etch1_powerpc.deb
Size/MD5 checksum: 99410 6509b075f37aed0ad13877e27e8172a5
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/ganglia-monitor_2.5.7-3.1etch1_s390.deb
Size/MD5 checksum: 152392 3d40c6548564fa0d8fc8dd33687229ae
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1_2.5.7-3.1etch1_s390.deb
Size/MD5 checksum: 100144 4d4658ae90101a1b6d753e85fc6683b2
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1-dev_2.5.7-3.1etch1_s390.deb
Size/MD5 checksum: 130170 6c6383515a8fd0c32dc6f6e340dc0b3b
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/gmetad_2.5.7-3.1etch1_s390.deb
Size/MD5 checksum: 100902 992b0c5c312736338ed828e6000ee22c
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/ganglia-monitor_2.5.7-3.1etch1_sparc.deb
Size/MD5 checksum: 137996 3101a44a169bf815df229213987b6a5e
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1-dev_2.5.7-3.1etch1_sparc.deb
Size/MD5 checksum: 122076 c0bf7c25aef712f8797ecb167fc0f3d0
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/gmetad_2.5.7-3.1etch1_sparc.deb
Size/MD5 checksum: 91710 49351379c4b365ef727d7fb3997751ca
http://security.debian.org/pool/updates/main/g/ganglia-monitor-core/libganglia1_2.5.7-3.1etch1_sparc.deb
Size/MD5 checksum: 89236 7be347618dbbcd8b5a374f4e7d746730
These files will probably be moved into the stable distribution on
its next update.
- - ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iQEcBAEBAgAGBQJJfMreAAoJEL97/wQC1SS+pJ0H/1ytzXfU+c8/RyKcyHrHKas8
tnuDaObCnV8jU38rwQ2mNTl2tuKcTfUZe1Zxm8uBlMud4zvVui7HTDn8fHRsf4JV
VWKeympvCUKtBmkcI92dgKpoFjgknyjFSxqPxt8FMJkn/q4hF9gyOzjuWHUNUHnt
M5oINvxQV+m9Mo5qM5HgZsp3KiYXEFl9r+ntCYnn2xjnT4hXBtaXykAeBt/GY4oW
BF6ywCtRgX9Uh2HiNoI/IrYygbW2NkKZmbTdK0TVN3CIC1qCqeakpgoStFZ6S8EZ
rORe7/WzVJuvizTUhB0bwGolSHx5zvMrvy/AQQ0nEsY0w8kJqfVedT+5HVjk//M=
=2Lll
- -----END PGP SIGNATURE-----
- --------------------------END INCLUDED TEXT--------------------
You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.
NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members. As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.
NOTE: This is only the original release of the security bulletin. It may
not be updated when updates to the original are made. If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.
Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.
Previous advisories and external security bulletins can be retrieved from:
http://www.auscert.org.au/render.html?cid=1980
If you believe that your computer system has been compromised or attacked in
any way, we encourage you to let us know by completing the secure National IT
Incident Reporting Form at:
http://www.auscert.org.au/render.html?it=3192
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
iQCVAwUBSX5grCh9+71yA2DNAQL2fgP9FPVZIDhpiGeuj/sCClK0ZLcPJpQnSc4p
1Jq51DMJn+7L2UcBKC8dMjB7SPh6frNk3jmVocOjAUek/KXMUjB05HUeqE3fs4Q3
dMyTcviHfXesJf8zWOKbAQGFnKYO6owQ2TVzDP8v9yADfXO48Dkq+WMeW2TqWKDh
aHXcAiTf6fM=
=JV/b
-----END PGP SIGNATURE-----