Search:

March 2007

Mandriva Security Advisories

ID: 89
Ref: 031/2007
Date: 09 March 2007:15:45:31
Version: 1

Title: Mandriva Security Advisories
Abstract: Details of security advisories concerning mozilla-firefox, mozilla-thunderbird, util-linux, Kdelibs, mplayer, tcpdump, xine-lib, ekiga, gnupg
Vendors affected: Mandriva
Operating systems affected: Mandriva
Applications affected: Mandriva

Package : mozilla-firefox
Date : March 2, 2007
Affected: 2007.0, Corporate 3.0, Corporate 4.0 Problem Description:
A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 1.5.0.10.

This update provides the latest Firefox to correct these issues.
http://www.mandriva.com/security/advisories?name=MDKSA-2007:050-1

Package : mozilla-thunderbird
Date : March 6, 2007
Affected: 2007.0, Corporate 3.0
Problem Description:

A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Thunderbird program, version 1.5.0.10.

This update provides the latest Thunderbird to correct these issues.
http://www.mandriva.com/security/advisories?name=MDKSA-2007:052

Package : util-linux
Date : March 6, 2007
Affected: 2006.0, 2007.0, Corporate 4.0 Problem Description:
Umount allows local users to trigger a NULL dereference and application crash by invoking the program with a pathname for a USB pen drive that was mounted and then physically removed, which might allow the users to obtain sensitive information, including core file contents.

Updated packages have been patched to address this issue.
http://www.mandriva.com/security/advisories?name=MDKSA-2007:053

Package : kdelibs
Date : March 8, 2007
Affected: 2007.0, Corporate 4.0
Problem Description:
ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror, allows remote attackers to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference.

Updated packages have been patched to address this issue.
http://www.mandriva.com/security/advisories?name=MDKSA-2007:054

Package : mplayer
Date : March 8, 2007
Affected: 2007.0, Corporate 3.0
Problem Description:
The DMO_VideoDecoder_Open function in loader/dmo/DMO_VideoDecoder.c in MPlayer 1.0rc1 and earlier does not set the biSize before use in a memcpy, which allows user-assisted remote attackers to cause a buffer overflow and possibly execute arbitrary code.

Updated packages have been patched to address this issue.
http://www.mandriva.com/security/advisories?name=MDKSA-2007:055

Package : tcpdump
Date : March 8, 2007
Affected: 2006.0, 2007.0, Corporate 3.0, Corporate 4.0 Problem Description:
Off-by-one buffer overflow in the parse_elements function in the 802.11 printer code (print-802_11.c) for tcpdump 3.9.5 and earlier allows remote attackers to cause a denial of service (crash) via a crafted
802.11 frame. NOTE: this was originally referred to as heap-based, but it might be stack-based.

Updated packages have been patched to address this issue.
http://www.mandriva.com/security/advisories?name=MDKSA-2007:056

Package : xine-lib
Date : March 8, 2007
Affected: 2007.0, Corporate 3.0
Problem Description:
The DMO_VideoDecoder_Open function in dmo/DMO_VideoDecoder.c in xine-lib does not set the biSize before use in a memcpy, which allows user-assisted remote attackers to cause a buffer overflow and possibly execute arbitrary code.

Updated packages have been patched to address this issue.
http://www.mandriva.com/security/advisories?name=MDKSA-2007:057

Package : ekiga
Date : March 8, 2007
Affected: 2007.0
Problem Description:
A format string flaw was discovered in how ekiga processes certain messages, which could permit a remote attacker that can connect to ekiga to potentially execute arbitrary code with the privileges of the user running ekiga. This is similar to the previous CVE-2007-1006, but the original evaluation/patches were incomplete.

Updated package have been patched to correct this issue.
http://www.mandriva.com/security/advisories?name=MDKSA-2007:058

Package : gnupg
Date : March 8, 2007
Affected: 2006.0, 2007.0, Corporate 3.0, Corporate 4.0, Multi Network Firewall 2.0 Problem Description:
GnuPG prior to 1.4.7 and GPGME prior to 1.1.4, when run from the command line, did not visually distinguish signed and unsigned portions of OpenPGP messages with multiple components. This could allow a remote attacker to forge the contents of an email message without detection.

GnuPG 1.4.7 is being provided with this update and GPGME has been patched on Mandriva 2007.0 to provide better visual notification on these types of forgeries.
http://www.mandriva.com/security/advisories?name=MDKSA-2007:059

______________________________________________________________________________

CPNI values your feedback.

1. Which of the following most reflects the value of the advisory to you?
(Place an 'X' next to your choice)

Very useful:__ Useful:__ Not useful:__

2. If you did not find it useful, why not?

3. Any other comments? How could we improve our advisories?

Thank you for your contribution.
______________________________________________________________________________

CPNI wishes to acknowledge the contributions of Mandriva for the information contained in this advisory.
______________________________________________________________________________