-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Trustix Secure Linux Security Advisory #2004-0058

Package name:      gd samba sqlgrey sudo
Summary:           Various security fixes
Date:              2004-11-15
Affected versions: Trustix Secure Linux 1.5
                   Trustix Secure Linux 2.0
                   Trustix Secure Linux 2.1
                   Trustix Secure Linux 2.2
                   Trustix Operating System - Enterprise Server 2

- --------------------------------------------------------------------------
Package description:
  gd:
  gd is a graphics library. It allows your code to quickly draw images
  complete with lines, arcs, text, multiple colors, cut and paste from
  other images, and flood fills, and write out the result as a PNG or
  JPEG file. This is particularly useful in World Wide Web applications,
  where PNG and JPEG are two of the formats accepted for inline images
  by most browsers.

  samba:
  Samba provides an SMB server which can be used to provide network
  services to SMB (sometimes called "Lan Manager") clients, including
  various versions of MS Windows, OS/2, and other Linux machines

  sqlgrey:
  SQLgrey is a Postfix grey-listing policy service with auto-white-listing
  written in Perl with SQL database as storage backend.

  sudo:
  Sudo (superuser do) allows a system administrator to give certain
  users (or groups of users) the ability to run some (or all) commands
  as root while logging all commands and arguments. Sudo operates on a
  per-command basis.  It is not a replacement for the shell.  Features
  include: the ability to restrict what commands a user may run on a
  per-host basis, copious logging of each command (providing a clear
  audit trail of who did what), a configurable timeout of the sudo
  command, and the ability to use the same configuration file (sudoers)
  on many different machines.


Problem description:

  gd:
  There has been found serveral overflows in gd.  This can be used to
  execute arbitary code in programs using the gd library.

  The Common Vulnerabilities and Exposures project (cve.mitre.org) has
  assigned the name CAN-2004-0941 and CAN-2004-0990 to these issues.


  sqlgrey:
  Matt Linzbach made us aware that the maintainers of SQLgrey have issued
  a new release that fixes an SQL injection bug.


  samba:
  From the Samba advisory:
  Invalid bounds checking in reply to certain trans2 requests 
  could result in a buffer overrun in smbd.  In order to exploit 
  this defect, the attacker must be able to create files with very 
  specific Unicode filenames on the Samba share. 

  The Common Vulnerabilities and Exposures project (cve.mitre.org) has
  assigned the name CAN-2004-0882 to this issue.

  From the Samba advisory:
  A bug in the input validation routines used to match
  filename strings containing wildcard characters may allow
  a user to consume more than normal amounts of CPU cycles
  thus impacting the performance and response of the server.
  In some circumstances the server can become entirely
  unresponsive.

  The Common Vulnerabilities and Exposures project (cve.mitre.org) has
  assigned the name CAN-2004-0930 to this issue.


  sudo:
  Bash exported functions and the CDPATH variable are now stripped from 
  the environment passed to the program to be executed. 




Action:
  We recommend that all systems with this package installed be upgraded.
  Please note that if you do not need the functionality provided by this
  package, you may want to remove it from your system.


Location:
  All Trustix Secure Linux updates are available from
  <URI:http://http.trustix.org/pub/trustix/updates/>
  <URI:ftp://ftp.trustix.org/pub/trustix/updates/>


About Trustix Secure Linux:
  Trustix Secure Linux is a small Linux distribution for servers. With focus
  on security and stability, the system is painlessly kept safe and up to
  date from day one using swup, the automated software updater.


Automatic updates:
  Users of the SWUP tool can enjoy having updates automatically
  installed using 'swup --upgrade'.


Questions?
  Check out our mailing lists:
  <URI:http://www.trustix.org/support/>


Verification:
  This advisory along with all Trustix packages are signed with the
  TSL sign key.
  This key is available from:
  <URI:http://www.trustix.org/TSL-SIGN-KEY>

  The advisory itself is available from the errata pages at
  <URI:http://www.trustix.org/errata/trustix-1.5/>,
  <URI:http://www.trustix.org/errata/trustix-2.0/>,
  <URI:http://www.trustix.org/errata/trustix-2.1/> and
  <URI:http://www.trustix.org/errata/trustix-2.2/>
  or directly at
  <URI:http://www.trustix.org/errata/2004/0058/>


MD5sums of the packages:
- --------------------------------------------------------------------------
a470211caddc2fd447fcfd2c3a009e64  2.2/rpms/gd-2.0.33-3tr.i586.rpm
dbfd11b288d2cedc745eef11b5694caf  2.2/rpms/gd-devel-2.0.33-3tr.i586.rpm
f8382d132037ead78313d0619b2b6c7a  2.2/rpms/gd-utils-2.0.33-3tr.i586.rpm
52c5bcbdd1343ae17a190f4c97044064  2.2/rpms/samba-3.0.7-2tr.i586.rpm
56c45ba7dc304ba6383e28af8894f4f9  2.2/rpms/samba-client-3.0.7-2tr.i586.rpm
cc8b41a2b9186231f5e4561fe2b2771c  2.2/rpms/samba-common-3.0.7-2tr.i586.rpm
8a31afe741dc235de66cd69eaad83c4a  2.2/rpms/samba-mysql-3.0.7-2tr.i586.rpm
106f17d50d8a6840f6256966d05ad5c8  2.2/rpms/sudo-1.6.8p2-1tr.i586.rpm

bf216f045129eb4b38349fb39ca5eb83  2.1/rpms/samba-3.0.7-2tr.i586.rpm
c76fee25117140451d492715a8183417  2.1/rpms/samba-client-3.0.7-2tr.i586.rpm
60bbf8e8e173673440198c1217000c84  2.1/rpms/samba-common-3.0.7-2tr.i586.rpm
0e7e7694e62530ae9d07bd1b9b165cce  2.1/rpms/samba-mysql-3.0.7-2tr.i586.rpm
51091585680beb1ba093a5c223bfb3bc  2.1/rpms/sudo-1.6.8p2-0.2tr.i586.rpm

4b9b2bc6692618d7d0b55a991c274b74  2.0/rpms/sudo-1.6.8p2-0.1tr.i586.rpm
ddbeb2e29e279ffab2d5bb1b4f439d04  1.5/rpms/sudo-1.6.8p2-0.1tr.i586.rpm
- --------------------------------------------------------------------------


Trustix Security Team


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)

iD8DBQFBmgzJi8CEzsK9IksRAreXAKCi442/YAm+c9wfhLQmooBuc9Lh0gCeKBC4
TA+rggg0v42NFDY0o+rrlY8=
=omlt
-----END PGP SIGNATURE-----