多个LINUX系统存在klogd漏洞发布时间:2000-09-25 更新时间:2000-09-25 严重程度:高 威胁程度:本地管理员权限 错误类型:输入验证错误 利用方式:服务器模式 受影响系统 Connectiva Linux 5.1详细描述 klogd是一个LINUX守护程序,接受来自内核和发送信息到syslogd并记录为 一个文件,但KLOGD中存在一个格式化字符串漏洞,可以导致获得ROOT权利。 问题出在klogd.c中的LogLine()函数: Syslog( LOG_INFO, line_buff ); 如果通过用户提供精心编制的格式化字符串会导致返回地址覆盖。 测试代码 尚无 解决方案 下载升级程序: Red Hat Linux 5.2: sparc: ftp://updates.redhat.com/5.2/sparc/sysklogd-1.3.31-1.6.sparc.rpm alpha: ftp://updates.redhat.com/5.2/alpha/sysklogd-1.3.31-1.6.alpha.rpm i386: ftp://updates.redhat.com/5.2/i386/sysklogd-1.3.31-1.6.i386.rpm sources: ftp://updates.redhat.com/5.2/SRPMS/sysklogd-1.3.31-1.6.src.rpm Red Hat Linux 6.2: sparc: ftp://updates.redhat.com/6.2/sparc/sysklogd-1.3.31-17.sparc.rpm i386: ftp://updates.redhat.com/6.2/i386/sysklogd-1.3.31-17.i386.rpm alpha: ftp://updates.redhat.com/6.2/alpha/sysklogd-1.3.31-17.alpha.rpm sources: ftp://updates.redhat.com/6.2/SRPMS/sysklogd-1.3.31-17.src.rpm Slackware All new packages can be found in the -current branch: ftp://ftp.slackware.com/pub/slackware/slackware-current/slakware/a1/sysklogd.tgz Debian GNU/Linux 2.1 (alias slink) - ---------------------------------- We are releasing slink packages for i386 at this time. m68k packages will be available at http://security.debian.org/ Source archives: http://security.debian.org/dists/slink/updates/source/sysklogd_1.3.orig.tar.gz MD5 checksum: 2e84beeafe23653205f3d3bf47a3a6bb http://security.debian.org/dists/slink/updates/source/sysklogd_1.3-31.slink1.diff.gz MD5 checksum: 8dd9c4b948b51b9eb685deea4fab3855 http://security.debian.org/dists/slink/updates/source/sysklogd_1.3-31.slink1.dsc MD5 checksum: 4f0820b82e169c112bdc785b9fc6671f Intel ia32 architecture: http://security.debian.org/dists/slink/updates/binary-i386/sysklogd_1.3-31.slink1_i386.deb MD5 checksum: 2d66ce993f7340742935f62a2d299233 Debian GNU/Linux 2.2 (alias potato) - ----------------------------------- Potato was released for the alpha, arm, i386, m68k, powerpc and sparc architectures. At this moment packages for m68k and powerpc are not yet available. As soon as they are ready we will put them online and list them on the security pages at http://security.debian.org/. Source archives: http://security.debian.org/dists/potato/updates/main/source/sysklogd_1.3-33.1.diff.gz MD5 checksum: 92b0b4b2a442c1e2a791980ac1e0863d http://security.debian.org/dists/potato/updates/main/source/sysklogd_1.3-33.1.dsc MD5 checksum: 4b522c8b0a2074c776d6faa2660cfee7 http://security.debian.org/dists/potato/updates/main/source/sysklogd_1.3.orig.tar.gz MD5 checksum: 2e84beeafe23653205f3d3bf47a3a6bb Alpha architecture: http://security.debian.org/dists/potato/updates/main/binary-alpha/sysklogd_1.3-33.1_alpha.deb MD5 checksum: 357088a0d8519f8b510760e7f25bdd4f ARM architecture: http://security.debian.org/dists/potato/updates/main/binary-arm/sysklogd_1.3-33.1_arm.deb MD5 checksum: d8d6888e635c121afa8c9dfa9e223046 Intel ia32 architecture: http://security.debian.org/dists/potato/updates/main/binary-i386/sysklogd_1.3-33.1_i386.deb MD5 checksum: 98826c90c295cf4a42ba71d499c097f9 Sun Sparc architecture: http://security.debian.org/dists/potato/updates/main/binary-sparc/sysklogd_1.3-33.1_sparc.deb MD5 checksum: 2f3c6a50922a6392d3ad68f1d8b6a754 Linux-Mandrake 6.0: f025156af9b4b9a296e5cee1cacae36f 6.0/RPMS/sysklogd-1.3.31-14mdk.i586.rpm 50792c33d6d1817b71d734711d6dcd4b 6.0/SRPMS/sysklogd-1.3.31-14mdk.src.rpm Linux-Mandrake 6.1: bc44efb4d6721cce0feb87535be14cd5 6.1/RPMS/sysklogd-1.3.31-14mdk.i586.rpm 50792c33d6d1817b71d734711d6dcd4b 6.1/SRPMS/sysklogd-1.3.31-14mdk.src.rpm Linux-Mandrake 7.0: 4fb519ce5be0516113908140a26ad390 7.0/RPMS/sysklogd-1.3.31-15mdk.i586.rpm 36805570b5f2d7ae792573d45050332a 7.0/SRPMS/sysklogd-1.3.31-15mdk.src.rpm Linux-Mandrake 7.1: 3d9416b240c87e58338d58361e5b289e 7.1/RPMS/sysklogd-1.3.31-15mdk.i586.rpm 36805570b5f2d7ae792573d45050332a 7.1/SRPMS/sysklogd-1.3.31-15mdk.src.rpm You can download the updates directly from: ftp://ftp.linux.tucows.com/pub/distributions/Mandrake/Mandrake/updates ftp://ftp.free.fr/pub/Distributions_Linux/Mandrake/updates Conectiva ftp://atualizacoes.conectiva.com.br/4.0/SRPMS/sysklogd-1.4-1cl.src.rpm ftp://atualizacoes.conectiva.com.br/4.0/i386/sysklogd-1.4-1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/4.0es/SRPMS/sysklogd-1.4-1cl.src.rpm ftp://atualizacoes.conectiva.com.br/4.0es/i386/sysklogd-1.4-1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/4.1/SRPMS/sysklogd-1.4-1cl.src.rpm ftp://atualizacoes.conectiva.com.br/4.1/i386/sysklogd-1.4-1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/4.2/SRPMS/sysklogd-1.4-1cl.src.rpm ftp://atualizacoes.conectiva.com.br/4.2/i386/sysklogd-1.4-1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/5.0/SRPMS/sysklogd-1.4-1cl.src.rpm ftp://atualizacoes.conectiva.com.br/5.0/i386/sysklogd-1.4-1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/5.1/SRPMS/sysklogd-1.4-1cl.src.rpm ftp://atualizacoes.conectiva.com.br/5.1/i386/sysklogd-1.4-1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/SRPMS/sysklogd-1.4-1cl.src.rpm ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/sysklogd-1.4-1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/SRPMS/sysklogd-1.4-1cl.src.rpm ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/sysklogd-1.4-1cl.i386.rpm Immunix OS 6.2 http://immunix.org:8080/ImmunixOS/6.2/updates/RPMS/sysklogd-1.3.31-17_StackGuard.i386.rpm http://www.immunix.org:8080/ImmunixOS/6.2/updates/SRPMS/sysklogd-1.3.31-17_StackGuard.src.rpm TurboLinux ftp://ftp.turbolinux.com/pub/updates/6.0/sysklogd-1.3.31-6.i386.rpm ftp://ftp.turbolinux.com/pub/updates/6.0/SRPMS/sysklogd-1.3.31-6.src.rpm Trustix ftp://ftp.trustix.com/pub/Trustix/updates/1.1/RPMS/sysklogd-1.3.31-18tr.i586.rpm 相关信息 |
