SA-1997.04.txt
8f237646a4ddd57f845a00e30b999b9cedce1ca0b0f34403219b84b4dd6d7236
-----BEGIN PGP SIGNED MESSAGE-----
Subject: Caldera Security Advisory SA-1997.04.01: Vulnerability in amd package
Caldera Security Advisory SA-1997.04.01: Vulnerability in amd package
Original issue date: 6-July-1997
Last revised: 6-July-1997
Topic: Vulnerability in amd (auto mount daemon)
I. Problem Description
A vulnerability exists within amd that does not honor the
nodev option for NFS filesystems and probably other mount types,
allowing any user access to the device files in /dev on a system,
provided that they have root access to another linux box on
the network.
II. Impact
On systems such as Caldera OpenLinux 1.0 and 1.1, an unprivileged
user can potentially gain root access.
III. Solution
Obtain the new amd-5.2.103-7.i386.rpm file and install according to
the instructions found in the README file which is one directory up
from the actual RPM file.
This package is located on Caldera's FTP server (ftp.caldera.com):
/pub/openlinux/updates/1.0/current/RPMS
/pub/openlinux/updates/1.1/current/RPMS (Both are the same)
The MD5 checksum (from the "md5sum" command) for this package is:
931097f566e1ff16844019630f43c623 amd-5.2.103-7.i386.rpm
Please follow the instructions from the README file precisely to
update any older version of amd that may be on your system:
IV. References
This and other Caldera security resources are located at:
http://www.caldera.com/tech-ref/security/
This advisory is based on a security report posted to linux-security:
Subject: [linux-security] amd 920824upl102 ignores the nodev option
Message-ID: <Pine.LNX.3.95L.970407225419.6253A-100000@fatale.res.cmu.edu.>
This fix closes Caldera's internal bug report #832.
Fix from Brad Keryan <keryan@andrew.cmu.edu> and LST.
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3a
Charset: noconv
iQCVAwUBM8AlL+n+9R4958LpAQFf2wQAnwiKOz+uK2d4PbNUrzkPqmgYzI4AVPtq
uNUsr49lAET1ZWgU8CeS3rWin5JZ/WJixaLKV0JilIjk0T7fDdgCx4anzpwf6kph
ClDlSjQmnICGl+R/9hWqu1BpotE+8j0OrPRe/+fLxlskLzdv+hOkl71UfuXvcveu
PR699NzkPAc=
=3Xhg
-----END PGP SIGNATURE-----