Secunia Security Advisory - Debian has issued an update for backup-manager. This fixes two vulnerabilities, which potentially can be exploited by malicious, local users to disclose potentially sensitive information or perform certain actions on a vulnerable system with escalated privileges.
f40fca95af87294cf92d37e45b80fccf1888c467824b003690005e2ebf19a11c
----------------------------------------------------------------------
Bist Du interessiert an einem neuen Job in IT-Sicherheit?
Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT-
Sicherheit:
http://secunia.com/secunia_vacancies/
----------------------------------------------------------------------
TITLE:
Debian update for backup-manager
SECUNIA ADVISORY ID:
SA16591
VERIFY ADVISORY:
http://secunia.com/advisories/16591/
CRITICAL:
Less critical
IMPACT:
Exposure of sensitive information, Privilege escalation
WHERE:
Local system
OPERATING SYSTEM:
Debian GNU/Linux unstable alias sid
http://secunia.com/product/530/
Debian GNU/Linux 3.1
http://secunia.com/product/5307/
DESCRIPTION:
Debian has issued an update for backup-manager. This fixes two
vulnerabilities, which potentially can be exploited by malicious,
local users to disclose potentially sensitive information or perform
certain actions on a vulnerable system with escalated privileges.
For more information:
SA15989
SA15615
SOLUTION:
Apply updated packages.
-- Debian GNU/Linux 3.1 alias sarge --
Source archives:
http://security.debian.org/pool/updates/main/b/backup-manager/backup-manager_0.5.7-1sarge1.dsc
Size/MD5 checksum: 631 6b20ee3cd0439df2e95819d5001f7e53
http://security.debian.org/pool/updates/main/b/backup-manager/backup-manager_0.5.7-1sarge1.diff.gz
Size/MD5 checksum: 17938 a6f1ae5f8555c17c9db3a0fc2ba9ec7a
http://security.debian.org/pool/updates/main/b/backup-manager/backup-manager_0.5.7.orig.tar.gz
Size/MD5 checksum: 35661 a97a66d03c4a05072924998f48f7b5d6
Architecture independent components:
http://security.debian.org/pool/updates/main/b/backup-manager/backup-manager_0.5.7-1sarge1_all.deb
Size/MD5 checksum: 30550 3bbe99ebf51f69ca80a93e19a64880ac
-- Debian GNU/Linux unstable alias sid --
Fixed in version 0.5.8-2.
ORIGINAL ADVISORY:
http://www.debian.org/security/2005/dsa-787
OTHER REFERENCES:
SA15989:
http://secunia.com/advisories/15989/
SA15615:
http://secunia.com/advisories/15615/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------