Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > January 2006 > Four Debian Security Advisories: 1. DSA 947-2 - clamav 2. DSA 953-1 - flyspray 3. DSA 954-1 - wine 4. DSA 955-1 - clamav

January 2006

Four Debian Security Advisories: 1. DSA 947-2 - clamav 2. DSA 953-1 - flyspray 3. DSA 954-1 - wine 4. DSA 955-1 - clamav

ID: 00084
Ref: 83/2006
Date: 26 January 2006:14:09:07
Version: 1
Title: Four Debian Security Advisories: 1. DSA 947-2 - clamav 2. DSA 953-1 - flyspray 3. DSA 954-1 - wine 4. DSA 955-1 - clamav
Abstract:
Vendors affected: Debain
Operating systems affected: Debain
Applications affected: Debain
Title
=====


-----BEGIN PGP SIGNED MESSAGE-----

Four Debian Security Advisories:

1. DSA 947-2 - clamav

2. DSA 953-1 - flyspray

3. DSA 954-1 - wine

4. DSA 955-1 - clamav

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1

iQCVAwUBQ9i6BIpao72zK539AQEiTAP8D5Q/JVFaspgCffLSboQvX1axm0TFdwrp
OkPbFJRC3mvkvozHdwtzOqg6kKIccK6DGtahEKQg5EOF2c1MbxybCyX4oD5gkgGL
XkEaD3NW3/E4t2SpCigBh5lHwIo+GGTcWhQqunGgAc0SCnx9o7krQkYatdBpmH1M
S/+pGevAozY=
=ZBsG
-----END PGP SIGNATURE-----

Detail
======

1. A heap overflow has been discovered in ClamAV, a virus scanner, which
could allow an attacker to execute arbitrary code by sending a carefully
crafted UPX-encoded executable to a system runnig ClamAV. In addition,
other potential overflows have been corrected.

2. Several cross-site scripting vulnerabilities have been discovered in
flyspray, a lightweight bug tracking system, which allows attackers to
insert arbitary script code into the index page.

3. H D Moore that discovered that Wine, a free implemention of the Microsoft
Windows APIs, inherits a design flaw from the Windows GDI API, which may
lead to the execution of code through GDI escape functions in WMF files.

4. Two denial of service bugs were found in the mailman list server. In
one, attachment filenames containing UTF8 strings were not properly
parsed, which could cause the server to crash. In another, a message
containing a bad date string could cause a server crash.




1.


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 947-2 security@debian.org
http://www.debian.org/security/ Michael Stone
January 25th, 2006 http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package : clamav
Vulnerability : heap overflow
Problem type : remote
Debian-specific: no
CVE IDs : CVE-2006-0162
Debian Bug : 320014

A heap overflow has been discovered in ClamAV, a virus scanner, which
could allow an attacker to execute arbitrary code by sending a carefully
crafted UPX-encoded executable to a system runnig ClamAV. In addition,
other potential overflows have been corrected.

Packages for the ARM architecture were not available when DSA 947-1 was
released; these packages are now available. Also, DSA 947-1 incorrectly
identified the package version which corrected these issues in the
unstable distribution (sid).

The old stable distribution (woody) does not include ClamAV.

For the stable distribution (sarge) this problem has been fixed in
version 0.84-2.sarge.7.

For the unstable distribution (sid) this problem has been fixed in
version 0.88-1.

We recommend that you upgrade your clamav package immediately.


Upgrade Instructions
- --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

ARM architecture:

http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.7_arm.deb
Size/MD5 checksum: 63830 8fcc1f60dffe350cc1138f5217992032
http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.7_arm.deb
Size/MD5 checksum: 39510 10528078333fbf18bfc3a200d23b977b
http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.7_arm.deb
Size/MD5 checksum: 2171192 d45c061628d87b24bab8516564d7e1c0
http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.7_arm.deb
Size/MD5 checksum: 37310 abd9c3c02bf89e8eea072d66f01363eb
http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.7_arm.deb
Size/MD5 checksum: 174662 2f8277ebe9debd8bf8c997e66999cf82
http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.7_arm.deb
Size/MD5 checksum: 249490 e766e1d75c97b14b086ce0413b2c9cac

These files will probably be moved into the stable distribution on
its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iQCVAwUBQ9dhKQ0hVr09l8FJAQLcqwQAz46BYJKcBRZ2QpCJ7CCctuvNL0/IOmZM
N/nWBQNjZdwZeIDVak/1BRc9UzXT/APeX1ZcZ7oGG3Ev4Fa4TIkgNucXAALBvK16
XHsn5PkMQG8NgS/sj2mX1zlfX2WUgwrwxn7k612NTWtWEGCdldCRf2iDDQvMG/BL
q8ujDaofvWc=
=oabx
-----END PGP SIGNATURE-----


2.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 953-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
January 24th, 2006 http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package : flyspray
Vulnerability : missing input sanitising
Problem-Type : remote
Debian-specific: no
CVE ID : CVE-2005-3334
Debian Bug : 335997

Several cross-site scripting vulnerabilities have been discovered in
flyspray, a lightweight bug tracking system, which allows attackers to
insert arbitary script code into the index page.

The old stable distribution (woody) does not contain flyspray.

For the stable distribution (sarge) this problem has been fixed in
version 0.9.7-2.1.

For the testing (etch) and unstable distribution (sid) this problem has
been fixed in version 0.9.8-5.

We recommend that you upgrade your flyspray package.


Upgrade Instructions
- --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/f/flyspray/flyspray_0.9.7-2.1.dsc
Size/MD5 checksum: 603 b939804b2e4c9c69392cf1c98d0a0997
http://security.debian.org/pool/updates/main/f/flyspray/flyspray_0.9.7-2.1.diff.gz
Size/MD5 checksum: 18274 aa63664cac0470f94f00b8feda00057a
http://security.debian.org/pool/updates/main/f/flyspray/flyspray_0.9.7.orig.tar.gz
Size/MD5 checksum: 347441 9fab03b57e7946f60efc441f2c9b7c4f

Architecture independent components:

http://security.debian.org/pool/updates/main/f/flyspray/flyspray_0.9.7-2.1_all.deb
Size/MD5 checksum: 343272 d40f8bf3e2e47a762481cf2ed58dcd3b


These files will probably be moved into the stable distribution on
its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFD1lbjW5ql+IAeqTIRAtvIAJ9Xc/OXlxlooe3fYoxpHFdZ2vBb/QCfUj6i
QwgzDfL5IVqTB15e20XuVkY=
=tpjE
-----END PGP SIGNATURE-----


3.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 954-1 security@debian.org
http://www.debian.org/security/ Moritz Muehlenhoff
January 25th, 2006 http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package : wine
Vulnerability : design flaw
Problem-Type : local (remote)
Debian-specific: no
CVE ID : CVE-2006-0106
Debian Bug : 346197

H D Moore that discovered that Wine, a free implemention of the Microsoft
Windows APIs, inherits a design flaw from the Windows GDI API, which may
lead to the execution of code through GDI escape functions in WMF files.

The old stable distribution (woody) does not seem to be affected by this
problem.

For the stable distribution (sarge) this problem has been fixed in
version 0.0.20050310-1.2.

For the unstable distribution (sid) this problem has been fixed in
version 0.9.2-1.

We recommend that you upgrade your wine packages.


Upgrade Instructions
- --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/w/wine/wine_0.0.20050310-1.2.dsc
Size/MD5 checksum: 1321 7955ea0c5382fb0bb4649e07ed82f973
http://security.debian.org/pool/updates/main/w/wine/wine_0.0.20050310-1.2.diff.gz
Size/MD5 checksum: 47563 1973d7684bc3accf3c2eb1f4fa3b80be
http://security.debian.org/pool/updates/main/w/wine/wine_0.0.20050310.orig.tar.gz
Size/MD5 checksum: 11798040 d90d31716ba71211af26ac773934f57e

Architecture independent components:

http://security.debian.org/pool/updates/main/w/wine/wine-doc_0.0.20050310-1.2_all.deb
Size/MD5 checksum: 1780636 c78163bfadc872ca47b19c382f360bf2

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/w/wine/libwine_0.0.20050310-1.2_i386.deb
Size/MD5 checksum: 8069792 90ae35746250507071ca6e8d43d9e647
http://security.debian.org/pool/updates/main/w/wine/libwine-alsa_0.0.20050310-1.2_i386.deb
Size/MD5 checksum: 1128766 38cee9eecc78832a9f8e83385f599d0f
http://security.debian.org/pool/updates/main/w/wine/libwine-arts_0.0.20050310-1.2_i386.deb
Size/MD5 checksum: 1105648 626dbf5ed914d7dfd080a826b275ebf6
http://security.debian.org/pool/updates/main/w/wine/libwine-capi_0.0.20050310-1.2_i386.deb
Size/MD5 checksum: 1094760 10c2c64aee60e0473c61f07de3e772f9
http://security.debian.org/pool/updates/main/w/wine/libwine-dev_0.0.20050310-1.2_i386.deb
Size/MD5 checksum: 2530646 7d1bc36dbb1dfa57d816ba24e135eadd
http://security.debian.org/pool/updates/main/w/wine/libwine-jack_0.0.20050310-1.2_i386.deb
Size/MD5 checksum: 1107820 77e61796adc46f530219502b37e0a86c
http://security.debian.org/pool/updates/main/w/wine/libwine-nas_0.0.20050310-1.2_i386.deb
Size/MD5 checksum: 1102382 af5ef1acdceb8ea0863abd3e6041c825
http://security.debian.org/pool/updates/main/w/wine/libwine-print_0.0.20050310-1.2_i386.deb
Size/MD5 checksum: 1202416 e504f2d0cdd5f5f0187b0c44abbfdcae
http://security.debian.org/pool/updates/main/w/wine/libwine-twain_0.0.20050310-1.2_i386.deb
Size/MD5 checksum: 1104750 4edd3e88a7ae7f4e0dc9a42d127a1de2
http://security.debian.org/pool/updates/main/w/wine/wine_0.0.20050310-1.2_i386.deb
Size/MD5 checksum: 1299408 dbf86414fc89653b4d910d282733e09b
http://security.debian.org/pool/updates/main/w/wine/wine-utils_0.0.20050310-1.2_i386.deb
Size/MD5 checksum: 1659130 7ba1ce62ec17663f390d8b1ea2b45d63


These files will probably be moved into the stable distribution on
its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFD1xsdW5ql+IAeqTIRAnwQAJ9noApACdv35h3jKeg7yw0CzDknYwCfZbpe
tnvRDZkneoFlUSChizlu3rU=
=SvCV
-----END PGP SIGNATURE-----


4.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 955-1 security@debian.org
http://www.debian.org/security/ Michael Stone
January 25th, 2006 http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package : clamav
Vulnerability : DoS
Problem type : remote
Debian-specific: no
CVE IDs : CVE-2005-3573, CVE-2005-4153
Debian Bug : 339095, 326024

Two denial of service bugs were found in the mailman list server. In
one, attachment filenames containing UTF8 strings were not properly
parsed, which could cause the server to crash. In another, a message
containing a bad date string could cause a server crash.

The old stable distribution (woody) is not vulnerable to this issue.

For the stable distribution (sarge) this problem has been fixed in
version 2.1.5-8sarge1.

For the unstable distribution (sid) this problem has been fixed in
version 2.1.5-10.

We recommend that you upgrade your mailman package immediately.


Upgrade Instructions
- --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1.dsc
Size/MD5 checksum: 738 da48d99072879f627fbba7d57f8b9449
http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1.diff.gz
Size/MD5 checksum: 188686 f6b707d6165c4e2def0a37ecaa9d0237
http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5.orig.tar.gz
Size/MD5 checksum: 5745912 f5f56f04747cd4aff67427e7a45631af

Alpha architecture:

http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1_alpha.deb
Size/MD5 checksum: 6612108 0c91e09a0ac1b146f9c9b2a5567b6b62

AMD64 architecture:

http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1_amd64.deb
Size/MD5 checksum: 6610470 971f05595431464b627c9f0d782c3f3d

ARM architecture:

http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1_arm.deb
Size/MD5 checksum: 6610082 7c1f992caa3bd026a0e0a0d0fb2da90b

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1_i386.deb
Size/MD5 checksum: 6611458 6887debd5526800e45691c7f69a67004

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1_ia64.deb
Size/MD5 checksum: 6611922 6608017e09f4cf2103677ea2abc0ab64

HP Precision architecture:

http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1_hppa.deb
Size/MD5 checksum: 6617272 21dc663d4ff65619a0eb5ba1efb2fd38

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1_m68k.deb
Size/MD5 checksum: 6616562 34978e9fe8dd54ed594ea8aac7f524e1

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1_mips.deb
Size/MD5 checksum: 6660790 18c26f54237f2c2debbe979f6f2ab4dc

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1_mipsel.deb
Size/MD5 checksum: 6652282 458f7ada6fad580545d54a67e3c75dad

PowerPC architecture:

http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1_powerpc.deb
Size/MD5 checksum: 6617334 a79738f25904b0cca44a2eda89322014

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1_s390.deb
Size/MD5 checksum: 6616708 f09da905ce4d8e521002850a466dcaf7

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/m/mailman/mailman_2.1.5-8sarge1_sparc.deb
Size/MD5 checksum: 6616064 343a2acc7348c2c547922ecc79ad4c1a

These files will probably be moved into the stable distribution on
its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iQCVAwUBQ9dhVQ0hVr09l8FJAQKkOwP8DCFeoEn8JH0ZQbBlrJD90catxv5IB5Rm
0bTxPPugMfKyZ1ImelTmc4SJ3lKtKabu6oGSXenm8N7y+zPGdwmuVPC6fvssAF8X
CLuZ3QmviQdWkBftPCgIr5EUkK/302IG6gXTLd0bsB9QuONUcC+I9XIx7lL6rKKi
VBkyZSjO+gg=
=Zd4n
-----END PGP SIGNATURE-----

  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |