Secunia Security Advisory - Debian has issued an update for storebackup. This fixes a vulnerability and a security issue, which potentially can be exploited by malicious, local users to gain access to sensitive information or perform certain actions on a vulnerable system with escalated privileges.
64dd1510304874f0631ec167c295d83fd685e8f7d46771acd8994b8237e761d9
TITLE:
Debian update for storebackup
SECUNIA ADVISORY ID:
SA19489
VERIFY ADVISORY:
http://secunia.com/advisories/19489/
CRITICAL:
Less critical
IMPACT:
Exposure of sensitive information, Privilege escalation
WHERE:
Local system
OPERATING SYSTEM:
Debian GNU/Linux unstable alias sid
http://secunia.com/product/530/
Debian GNU/Linux 3.1
http://secunia.com/product/5307/
DESCRIPTION:
Debian has issued an update for storebackup. This fixes a
vulnerability and a security issue, which potentially can be
exploited by malicious, local users to gain access to sensitive
information or perform certain actions on a vulnerable system with
escalated privileges.
For more information:
SA17025
SOLUTION:
Apply updated packages.
-- Debian GNU/Linux 3.1 alias sarge --
Source archives:
http://security.debian.org/pool/updates/main/s/storebackup/storebackup_1.18.4-2sarge1.dsc
Size/MD5 checksum: 598 94af97325a97695b0b64fd8df238b758
http://security.debian.org/pool/updates/main/s/storebackup/storebackup_1.18.4-2sarge1.diff.gz
Size/MD5 checksum: 5963 b85a68d72314a983f898f405afa1ca95
http://security.debian.org/pool/updates/main/s/storebackup/storebackup_1.18.4.orig.tar.gz
Size/MD5 checksum: 120135 8ae9e30dfa5918ee420dc6e6ac2e184c
Architecture independent components:
http://security.debian.org/pool/updates/main/s/storebackup/storebackup_1.18.4-2sarge1_all.deb
Size/MD5 checksum: 120128 1b558238c057ed58032d16f8c51f4d52
-- Debian GNU/Linux unstable alias sid --
Fixed in version 1.19-2.
ORIGINAL ADVISORY:
http://www.us.debian.org/security/2006/dsa-1022
OTHER REFERENCES:
SA17025:
http://secunia.com/advisories/17025/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------