Secunia Security Advisory - Debian has issued an update for hiki. This fixes a vulnerability, which can be exploited by malicious people to delete arbitrary files.
21afe2a03366cff274deb829058a03f7dfc8bfdb88285bbd2a72bc17324a353a
----------------------------------------------------------------------
Try a new way to discover vulnerabilities that ALREADY EXIST in your
IT infrastructure.
The Full Featured Secunia Network Software Inspector (NSI) is now
available:
http://secunia.com/network_software_inspector/
The Secunia NSI enables you to INSPECT, DISCOVER, and DOCUMENT
vulnerabilities in more than 4,000 different Windows applications.
----------------------------------------------------------------------
TITLE:
Debian update for hiki
SECUNIA ADVISORY ID:
SA25874
VERIFY ADVISORY:
http://secunia.com/advisories/25874/
CRITICAL:
Moderately critical
IMPACT:
Manipulation of data
WHERE:
>From remote
OPERATING SYSTEM:
Debian GNU/Linux 4.0
http://secunia.com/product/13844/
Debian GNU/Linux unstable alias sid
http://secunia.com/product/530/
DESCRIPTION:
Debian has issued an update for hiki. This fixes a vulnerability,
which can be exploited by malicious people to delete arbitrary
files.
For more information:
SA25764
SOLUTION:
Apply updated packages.
-- Debian (stable) --
Stable updates are available for alpha, amd64, arm, hppa, i386, ia64,
mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/h/hiki/hiki_0.8.6-1etch1.diff.gz
Size/MD5 checksum: 5418 b57f6debe38f903c7615d738f5030060
http://security.debian.org/pool/updates/main/h/hiki/hiki_0.8.6-1etch1.dsc
Size/MD5 checksum: 571 22358a8449ae12c19fe6a80f8607a82f
http://security.debian.org/pool/updates/main/h/hiki/hiki_0.8.6.orig.tar.gz
Size/MD5 checksum: 244885 990212929cabf29e72df10a5b76ff27d
Architecture independent packages:
http://security.debian.org/pool/updates/main/h/hiki/hiki_0.8.6-1etch1_all.deb
Size/MD5 checksum: 228092 fdbc68fca2b4939ceace21f282b0c2fb
-- Debian (unstable) --
Fixed in version 0.8.7-1.
ORIGINAL ADVISORY:
http://www.debian.org/security/2007/dsa-1324
OTHER REFERENCES:
SA25764:
http://secunia.com/advisories/25764/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------