Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > January 2006 > Two Mandriva Linux Security Advisories: 1. MDKSA-2006:020 - ipsec-tools 2. MDKSA-2006:021 - Mozilla-Thunderbird

January 2006

Two Mandriva Linux Security Advisories: 1. MDKSA-2006:020 - ipsec-tools 2. MDKSA-2006:021 - Mozilla-Thunderbird

ID: 00083
Ref: 82/2006
Date: 26 January 2006:14:07:18
Version: 1
Title: Two Mandriva Linux Security Advisories: 1. MDKSA-2006:020 - ipsec-tools 2. MDKSA-2006:021 - Mozilla-Thunderbird
Abstract:
Vendors affected: Mandriva
Operating systems affected: Mandriva
Applications affected: Mandriva
Title
=====


-----BEGIN PGP SIGNED MESSAGE-----

Two Mandriva Linux Security Advisories:

1. MDKSA-2006:020 - ipsec-tools

2. MDKSA-2006:021 - Mozilla-Thunderbird

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1

iQCVAwUBQ9i594pao72zK539AQE/tQP/ctl8GGd31Qjj3MXK0G2R7eg9iGdGCUZJ
6lAFV4NgJ/GeJKYByaarJSfo6QT4PXJlaUPIghUq/BHKG5H1M97bOUj9/wDrm+W+
S45LOWNyhQNcmHEzxijWlHOG3WEqF8UrLBD1WPjo8wCrosxrzp1LqyeyShDauT8f
WS2GS4wNBqA=
=fDUd
-----END PGP SIGNATURE-----

Detail
======

1. The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c)
in ipsec-tools racoon before 0.6.3, when running in aggressive mode,
allows remote attackers to cause a denial of service (null dereference
and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP
Test Suite for IKEv1.

2. GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6,
and 1.0.7 allows user-complicit attackers to execute arbitrary code via an
attachment with a filename containing a large number of spaces ending with
a dangerous extension that is not displayed by Thunderbird, along with an
inconsistent Content-Type header, which could be used to trick a user into
downloading dangerous content by dragging or saving the attachment.



1.



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDKSA-2006:020
http://www.mandriva.com/security/
_______________________________________________________________________

Package : ipsec-tools
Date : January 25, 2006
Affected: 10.1, 10.2, 2006.0, Multi Network Firewall 2.0
_______________________________________________________________________

Problem Description:

The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c)
in ipsec-tools racoon before 0.6.3, when running in aggressive mode,
allows remote attackers to cause a denial of service (null dereference
and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP
Test Suite for IKEv1.

The updated packages have been patched to correct this problem.
_______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3732
_______________________________________________________________________

Updated Packages:

Mandriva Linux 10.1:
c1f74be6f3c46152881ded66022a3928 10.1/RPMS/ipsec-tools-0.2.5-2.2.101mdk.i586.rpm
c8416853386be9e80b5f8ac6de16cf93 10.1/RPMS/libipsec-tools0-0.2.5-2.2.101mdk.i586.rpm
278751ee3fca05321059c67f39f1a0f0 10.1/SRPMS/ipsec-tools-0.2.5-2.2.101mdk.src.rpm

Mandriva Linux 10.1/X86_64:
5d3d19d02d0d5a8eb5fcc237768fb07f x86_64/10.1/RPMS/ipsec-tools-0.2.5-2.2.101mdk.x86_64.rpm
464dadc90a736f6312a6c143c12a4cce x86_64/10.1/RPMS/lib64ipsec-tools0-0.2.5-2.2.101mdk.x86_64.rpm
278751ee3fca05321059c67f39f1a0f0 x86_64/10.1/SRPMS/ipsec-tools-0.2.5-2.2.101mdk.src.rpm

Mandriva Linux 10.2:
75b061a206ba4a943904d384e489036c 10.2/RPMS/ipsec-tools-0.5-4.2.102mdk.i586.rpm
3c17715ce5bd1e63347e844bca518fa3 10.2/RPMS/libipsec0-0.5-4.2.102mdk.i586.rpm
c221e9fbca14cc956df812605aa67b96 10.2/RPMS/libipsec0-devel-0.5-4.2.102mdk.i586.rpm
313ae7a9fd1eceb117515c61f19f0a2a 10.2/SRPMS/ipsec-tools-0.5-4.2.102mdk.src.rpm

Mandriva Linux 10.2/X86_64:
2de25a175eff7fbb77758993965110a5 x86_64/10.2/RPMS/ipsec-tools-0.5-4.2.102mdk.x86_64.rpm
ff5095c574441578b6e6e1c9384bf05c x86_64/10.2/RPMS/lib64ipsec0-0.5-4.2.102mdk.x86_64.rpm
db6e3f33dc2326528a4c22e199e2c0fa x86_64/10.2/RPMS/lib64ipsec0-devel-0.5-4.2.102mdk.x86_64.rpm
313ae7a9fd1eceb117515c61f19f0a2a x86_64/10.2/SRPMS/ipsec-tools-0.5-4.2.102mdk.src.rpm

Mandriva Linux 2006.0:
a3881692a4ee81a3e4759500691ba86d 2006.0/RPMS/ipsec-tools-0.5.2-5.1.20060mdk.i586.rpm
4523963e017054a149cc9c6c46e6fa39 2006.0/RPMS/libipsec0-0.5.2-5.1.20060mdk.i586.rpm
9208a98bc79efce31e8bf08c5a409431 2006.0/RPMS/libipsec0-devel-0.5.2-5.1.20060mdk.i586.rpm
390a8547034610a0ebd6a30f8752c36d 2006.0/SRPMS/ipsec-tools-0.5.2-5.1.20060mdk.src.rpm

Mandriva Linux 2006.0/X86_64:
89c02c5eebb80544fb54cf8876183d92 x86_64/2006.0/RPMS/ipsec-tools-0.5.2-5.1.20060mdk.x86_64.rpm
833ab780f0ef3eb86da1c2aa82746c72 x86_64/2006.0/RPMS/lib64ipsec0-0.5.2-5.1.20060mdk.x86_64.rpm
d875aeb7f90b36eba89ff2e2b901a3cc x86_64/2006.0/RPMS/lib64ipsec0-devel-0.5.2-5.1.20060mdk.x86_64.rpm
390a8547034610a0ebd6a30f8752c36d x86_64/2006.0/SRPMS/ipsec-tools-0.5.2-5.1.20060mdk.src.rpm

Multi Network Firewall 2.0:
3a441d674beb304f607975502cb2f302 mnf/2.0/RPMS/ipsec-tools-0.2.5-0.4.M20mdk.i586.rpm
109a0184382426bd065df6000f64189d mnf/2.0/RPMS/libipsec-tools0-0.2.5-0.4.M20mdk.i586.rpm
96dacbdb35121f2f876d1bb19cb00c24 mnf/2.0/SRPMS/ipsec-tools-0.2.5-0.4.M20mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com
_______________________________________________________________________

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFD19iemqjQ0CJFipgRAp9rAKC7w5Jflg/c/KBy6kdNDiGF8YbgWQCeIbM4
LUncx0ejSC2hQ5/zFlDZKjg=
=qhPu
-----END PGP SIGNATURE-----


2.


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDKSA-2006:021
http://www.mandriva.com/security/
_______________________________________________________________________

Package : mozilla-thunderbird
Date : January 25, 2006
Affected: 2006.0
_______________________________________________________________________

Problem Description:

GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6,
and 1.0.7 allows user-complicit attackers to execute arbitrary code via an
attachment with a filename containing a large number of spaces ending with
a dangerous extension that is not displayed by Thunderbird, along with an
inconsistent Content-Type header, which could be used to trick a user into
downloading dangerous content by dragging or saving the attachment.

The updated packages have been patched to correct this problem.
_______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0236
_______________________________________________________________________

Updated Packages:

Mandriva Linux 2006.0:
ec5571737dd8a0908f6532d657ccc378 2006.0/RPMS/mozilla-thunderbird-1.0.6-7.3.20060mdk.i586.rpm
6ad6aa5666f6ba499c3e78a9e24f4917 2006.0/RPMS/mozilla-thunderbird-enigmail-1.0.6-7.3.20060mdk.i586.rpm
a89fceffe0e0429c634b0b76120ee36a 2006.0/RPMS/mozilla-thunderbird-enigmime-1.0.6-7.3.20060mdk.i586.rpm
8babd434a3fe12a7134239ca36658743 2006.0/SRPMS/mozilla-thunderbird-1.0.6-7.3.20060mdk.src.rpm

Mandriva Linux 2006.0/X86_64:
5df5db7c2e45cf30d3d5f0209a7b0cd8 x86_64/2006.0/RPMS/mozilla-thunderbird-1.0.6-7.3.20060mdk.x86_64.rpm
58595fbd0a66345df85e4e586ee2bbd8 x86_64/2006.0/RPMS/mozilla-thunderbird-enigmail-1.0.6-7.3.20060mdk.x86_64.rpm
351d08e5ca2c990fd6496f857b2b1fb0 x86_64/2006.0/RPMS/mozilla-thunderbird-enigmime-1.0.6-7.3.20060mdk.x86_64.rpm
8babd434a3fe12a7134239ca36658743 x86_64/2006.0/SRPMS/mozilla-thunderbird-1.0.6-7.3.20060mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com
_______________________________________________________________________

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFD19mcmqjQ0CJFipgRAomfAJ9Sc31DJhW3p3Uz8Hkn6IpbsyorkQCgxj0/
i4dbanmhBAKfdTfe1OYTJfo=
=Apkn
-----END PGP SIGNATURE-----
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |