Secunia Security Advisory - Debian has issued an update for tkdiff. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges.
230ce4c0695283a18508b2a70dc9d599412c33f7efd37128d985a93e01f94242
TITLE:
Debian update for tkdiff
SECUNIA ADVISORY ID:
SA18215
VERIFY ADVISORY:
http://secunia.com/advisories/18215/
CRITICAL:
Less critical
IMPACT:
Privilege escalation
WHERE:
Local system
OPERATING SYSTEM:
Debian GNU/Linux 3.0
http://secunia.com/product/143/
Debian GNU/Linux 3.1
http://secunia.com/product/5307/
Debian GNU/Linux unstable alias sid
http://secunia.com/product/530/
DESCRIPTION:
Debian has issued an update for tkdiff. This fixes a vulnerability,
which can be exploited by malicious, local users to perform certain
actions on a vulnerable system with escalated privileges.
For more information:
SA18083
SOLUTION:
Apply updated packages.
-- Debian GNU/Linux 3.0 alias woody --
Source archives:
http://security.debian.org/pool/updates/main/t/tkdiff/tkdiff_3.08-3woody0.dsc
Size/MD5 checksum: 568 f331eee995b5ec3b5346b519c7147ee4
http://security.debian.org/pool/updates/main/t/tkdiff/tkdiff_3.08-3woody0.diff.gz
Size/MD5 checksum: 3685 f00859ddd284e8016728b5a1d00b6fdd
http://security.debian.org/pool/updates/main/t/tkdiff/tkdiff_3.08.orig.tar.gz
Size/MD5 checksum: 63171 197e9bee9812a5698889c589efd9b1ee
Architecture independent components:
http://security.debian.org/pool/updates/main/t/tkdiff/tkdiff_3.08-3woody0_all.deb
Size/MD5 checksum: 67308 7314490886f96610a31f71bc22513c7f
-- Debian GNU/Linux 3.1 alias sarge --
Source archives:
http://security.debian.org/pool/updates/main/t/tkdiff/tkdiff_4.0.2-1sarge0.dsc
Size/MD5 checksum: 571 e54f2d9fcd23c386640502fbe119e2b0
http://security.debian.org/pool/updates/main/t/tkdiff/tkdiff_4.0.2-1sarge0.diff.gz
Size/MD5 checksum: 3973 decabcedfbb5b9fc7dfa8a48b661b563
http://security.debian.org/pool/updates/main/t/tkdiff/tkdiff_4.0.2.orig.tar.gz
Size/MD5 checksum: 86258 c52f7d8d87ebe34fbba6b6bdf30f3c60
Architecture independent components:
http://security.debian.org/pool/updates/main/t/tkdiff/tkdiff_4.0.2-1sarge0_all.deb
Size/MD5 checksum: 85468 c5fe0c83bfb827e2903a045767f03ded
-- Debian GNU/Linux unstable alias sid --
Fixed in version 4.0.2-2.
ORIGINAL ADVISORY:
http://www.debian.org/security/2005/dsa-927
OTHER REFERENCES:
SA18083:
http://secunia.com/advisories/18083/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------