----------------------------------------
This issue is sponsored by Verisign
Offer strong encryption to your site with VeriSign Server-Gated Cryptography (SGC) SSL to enable every site visitor to connect with the strongest encryption available to them. Learn about all of the benefits of strong encryption with the free white paper.
http://clk.atdmt.com/SFI/go/scrtysrv1170000033sfi/direct/01/
SECURITY BLOGS
SecurityFocus has selected a few syndicated sources that stand out as conveying topics of interest for our community. We are proud to offer content from Matasano at this time and will be adding more in the coming weeks.
http://www.securityfocus.com/blogs
------------------------------------------------------------------
I. FRONT AND CENTER
1.Just Who's Being Exploited?
2.On the Border
II. LINUX VULNERABILITY SUMMARY
1. Linux Terminal Server Project 'ldm' Information Disclosure Vulnerability
2. util-linux-ng 'login' Remote Log Injection Weakness
3. Linux Kernel 'dnotify.c' Local Race Condition Vulnerability
4. Linux Kernel RLIMIT_CPU Zero Limit Handling Local Security Bypass Vulnerability
5. Linux Kernel Tehuti Network Driver 'BDX_OP_WRITE' Memory Corruption Vulnerability
6. WebMod Multiple Remote Security Vulnerabilities
7. Linux Kernel 'fcntl_setlk()' SMP Ordering Local Denial of Service Vulnerability
8. Linux Kernel IPSec Fragmented ESP Packet Remote Denial of Service Vulnerability
9. Linux Kernel '/include/xen/blkif.h' 32-on-64 Support Denial Of Service Vulnerability
10. Linux Kernel Asynchronous FIFO IO Local Denial of Service Vulnerability
11. Linux Kernel Direction Flag Local Memory Corruption Vulnerability
12. Linux Kernel 'ssm_i' Emulation Hypervisor Panic Denial of Service Vulnerability
13. Linux Kernel x86_64 ptrace Denial Of Service Vulnerability
III. LINUX FOCUS LIST SUMMARY
IV. UNSUBSCRIBE INSTRUCTIONS
V. SPONSOR INFORMATION
I. FRONT AND CENTER
---------------------
1.Just Who's Being Exploited?
By Jamie Reid
Last month's revelation that Tipping Point paid out a prize of $10,000 and a new laptop (MSRP: about $2000) at the CanSecWest conference, for the privilege of being the exclusive licensor of a heretofore unpublished vulnerability in Apple's Safari web browser to researcher, Charles Miller of Independent Security Evaluators, may lend some credence to this adage.
http://www.securityfocus.com/columnists/470
2.On the Border
By Mark Rasch
Recently, I was going through an airport with my shoes, coat, jacket, and belt off as well as with my carry-on bag, briefcase, and laptop all separated for easy inspection. I was heading through security at the Washington D.C., Ronald Reagan National Airport in Arlington, Virginia, or "National" as we locals call it. As I passed through the new magnetometer which gently puffed air all over my body -- which to me seems to be a cross between a glaucoma test and Marilyn Monroe in Gentlemen Prefer Blondes -- a TSA employee absent-mindedly asked if he could "inspect" my laptop computer. While the inspection was cursory, the situation immediately gave me pause: What was in my laptop anyway?
http://www.securityfocus.com/columnists/469
II. LINUX VULNERABILITY SUMMARY
------------------------------------
1. Linux Terminal Server Project 'ldm' Information Disclosure Vulnerability
BugTraq ID: 28960
Remote: Yes
Date Published: 2008-04-28
Relevant URL: http://www.securityfocus.com/bid/28960
Summary:
Linux Terminal Server Project is prone to an information-disclosure vulnerability.
An attacker can exploit this issue from the local network to obtain potentially sensitive information that may aid in further attacks.
2. util-linux-ng 'login' Remote Log Injection Weakness
BugTraq ID: 28983
Remote: Yes
Date Published: 2008-04-29
Relevant URL: http://www.securityfocus.com/bid/28983
Summary:
The 'login' utility from 'util-linux-ng' is prone to a weakness that allows remote attackers to inject false information into log files. This issue occurs because the utility fails to properly sanitize user-supplied input.
Successful exploits allow malicious users to inject false information into log files. The injected information may aid in indirect attacks against log-monitoring systems or may allow attackers to obfuscate malicious activity.
Versions prior to util-linux-ng 2.13.1.1 are prone to this issue.
3. Linux Kernel 'dnotify.c' Local Race Condition Vulnerability
BugTraq ID: 29003
Remote: No
Date Published: 2008-05-01
Relevant URL: http://www.securityfocus.com/bid/29003
Summary:
The Linux kernel is prone to a local race-condition vulnerability.
A local attacker may exploit this issue to crash the computer or to gain elevated privileges on the affected computer.
4. Linux Kernel RLIMIT_CPU Zero Limit Handling Local Security Bypass Vulnerability
BugTraq ID: 29004
Remote: No
Date Published: 2008-05-01
Relevant URL: http://www.securityfocus.com/bid/29004
Summary:
The Linux kernel is prone to a local security-bypass vulnerability because it fails to properly handle certain RLIMIT_CPU time limitations.
Attackers can exploit this issue to bypass certain security restrictions, which may lead to further attacks.
Versions prior to Linux kernel 2.6.22 are affected.
5. Linux Kernel Tehuti Network Driver 'BDX_OP_WRITE' Memory Corruption Vulnerability
BugTraq ID: 29014
Remote: No
Date Published: 2008-05-02
Relevant URL: http://www.securityfocus.com/bid/29014
Summary:
The Linux kernel is prone to a memory-corruption vulnerability because of insufficient boundary checks in the Tehuti network driver.
Local attackers could exploit this issue to cause denial-of-service conditions, bypass certain security restrictions, and potentially access sensitive information or gain elevated privileges.
These issues affect versions prior to Linux 2.6.25.1.
6. WebMod Multiple Remote Security Vulnerabilities
BugTraq ID: 29031
Remote: Yes
Date Published: 2008-05-03
Relevant URL: http://www.securityfocus.com/bid/29031
Summary:
WebMod is prone to multiple remote security vulnerabilities, including a directory-traversal issue, a stack-based buffer-overflow issue, multiple memory-corruption issues, and an information-disclosure issue.
Attackers can exploit these issues to execute arbitrary code with the privileges of the user running the affected application, obtain sensitive information to aid in further attacks, or cause denial-of-service conditions.
WebMod 0.48 is vulnerable; other versions may also be affected.
7. Linux Kernel 'fcntl_setlk()' SMP Ordering Local Denial of Service Vulnerability
BugTraq ID: 29076
Remote: No
Date Published: 2008-05-06
Relevant URL: http://www.securityfocus.com/bid/29076
Summary:
The Linux kernel is prone to a local denial-of-service vulnerability.
Attackers can exploit this issue to trigger kernel crashes, denying service to legitimate users.
Versions prior to Linux kernel 2.6.25.2 and 2.4.36.4 are vulnerable.
8. Linux Kernel IPSec Fragmented ESP Packet Remote Denial of Service Vulnerability
BugTraq ID: 29081
Remote: Yes
Date Published: 2008-05-07
Relevant URL: http://www.securityfocus.com/bid/29081
Summary:
The Linux Kernel is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to crash the affected computer, denying service to legitimate users.
Note: this issue occurs on computers that have netscreen firewalls or Cisco PIX installed.
9. Linux Kernel '/include/xen/blkif.h' 32-on-64 Support Denial Of Service Vulnerability
BugTraq ID: 29082
Remote: No
Date Published: 2008-05-07
Relevant URL: http://www.securityfocus.com/bid/29082
Summary:
The Linux kernel is prone to a denial-of-service vulnerability due to a a lack of sanity checks when handling values when running 32-bit paravirtualized guests on a 64-bit host.
Local, privileged attackers can leverage the issue to crash the kernel and deny service to legitimate users.
10. Linux Kernel Asynchronous FIFO IO Local Denial of Service Vulnerability
BugTraq ID: 29083
Remote: No
Date Published: 2008-05-07
Relevant URL: http://www.securityfocus.com/bid/29083
Summary:
The Linux kernel is prone to a local denial-of-service vulnerability.
Attackers can exploit this issue to trigger kernel panics, denying service to legitimate users.
Versions prior to Linux kernel 2.4.21 are vulnerable.
11. Linux Kernel Direction Flag Local Memory Corruption Vulnerability
BugTraq ID: 29084
Remote: No
Date Published: 2008-05-07
Relevant URL: http://www.securityfocus.com/bid/29084
Summary:
The Linux kernel is prone to a vulnerability that causes kernel memory corruption.
A local attacker can exploit this issue to crash the affected computer, denying service to legitimate users. Due to the nature of this issue arbitrary code-execution may be possible, however this has not been confirmed.
12. Linux Kernel 'ssm_i' Emulation Hypervisor Panic Denial of Service Vulnerability
BugTraq ID: 29085
Remote: No
Date Published: 2008-05-07
Relevant URL: http://www.securityfocus.com/bid/29085
Summary:
The Linux Kernel is prone to a denial-of-service vulnerability in certain virtualized environments.
An attacker can exploit this issue to crash the affected computer, denying service to legitimate users.
This issue may only affect the IA-64 architecture.
13. Linux Kernel x86_64 ptrace Denial Of Service Vulnerability
BugTraq ID: 29086
Remote: No
Date Published: 2008-05-07
Relevant URL: http://www.securityfocus.com/bid/29086
Summary:
The Linux kernel is prone to a denial-of-service vulnerability when process traces are performed on 64-bit computers.
Local attackers can leverage the issue to crash the kernel and deny service to legitimate users.
III. LINUX FOCUS LIST SUMMARY
---------------------------------
IV. UNSUBSCRIBE INSTRUCTIONS
-----------------------------
To unsubscribe send an e-mail message to linux-secnews-unsubscribe@securityfocus.com from the subscribed address. The contents of the subject or message body do not matter. You will receive a confirmation request message to which you will have to answer. Alternatively you can also visit http://www.securityfocus.com/newsletters and unsubscribe via the website.
If your email address has changed email listadmin@securityfocus.com and ask to be manually removed.
V. SPONSOR INFORMATION
------------------------
This issue is sponsored by Verisign
Offer strong encryption to your site with VeriSign Server-Gated Cryptography (SGC) SSL to enable every site visitor to connect with the strongest encryption available to them. Learn about all of the benefits of strong encryption with the free white paper.
http://clk.atdmt.com/SFI/go/scrtysrv1170000033sfi/direct/01/
No comments:
Post a Comment