|
|
GnoRPM可以覆盖任意文件
发布时间:2000-10-10
更新时间:2000-10-10
严重程度:高
威胁程度:本地拒绝服务
错误类型:竞争条件
利用方式:服务器模式
受影响系统GNOME GnoRPM 0.94and earlier
+ RedHat Linux 7.0
+ RedHat Linux 6.0x
+ RedHat Linux 5.0
+ MandrakeSoft Linux Mandrake 7.1
+ MandrakeSoft Linux Mandrake 7.0
+ MandrakeSoft Linux Mandrake 6.1
+ MandrakeSoft Linux Mandrake 6.0
- Debian Linux 2.3
- Debian Linux 2.2
- Debian Linux 2.1
- Debian Linux 2.0
+ Connectiva Linux 5.1
+ Connectiva Linux 5.0
+ Connectiva Linux 4.2
+ Connectiva Linux 4.1
+ Connectiva Linux 4.0es
+ Connectiva Linux 4.0
- Caldera OpenLinux 2.4
- Caldera OpenLinux 2.3
- Caldera OpenLinux 2.2
- Caldera OpenLinux 1.2
- Caldera OpenLinux 1.1
- Caldera OpenLinux 1.0
其中下面的系统不受影响 GNOME GnoRPM 0.95x
+ RedHat Linux 7.0
+ RedHat Linux 6.0x
+ RedHat Linux 5.x
+ RedHat Linux 4.x
+ MandrakeSoft Linux Mandrake 7.1
+ MandrakeSoft Linux Mandrake 7.0
+ MandrakeSoft Linux Mandrake 6.1
+ MandrakeSoft Linux Mandrake 6.0
+ Connectiva Linux 5.1
+ Connectiva Linux 5.0
+ Connectiva Linux 4.0es
+ Connectiva Linux 4.0
- Caldera OpenLinux 2.4
- Caldera OpenLinux 2.3
- Caldera OpenLinux 2.2
- Caldera OpenLinux 1.3
- Caldera OpenLinux 1.2
- Caldera OpenLinux 1.1
- Caldera OpenLinux 1.0 详细描述
GNORPM的0.95版本之前存在漏洞,它是GNOME的一个图形RPM管理工具,在处理
tmp文件的时候存在问题,GNOMERPM在/TMP建立的临时文件是全局可读并可
预测名字。恶意用户可以建立一个在/tmp目录下的可预测文件并建立符号连接,
可被GnomeRPM所覆盖。
测试代码
尚无
解决方案
ftp.linux.org.uk:/pub/linux/alan/GNORPM/gnorpm-0.95.1.tar.gz
ftp.gnome.org:/pub/GNOME/stable/sources/gnorpm/gnorpm-0.95.1.tar.gz (soon)
MD5Sum: 80521433f88fa09899e9105a24c69ef9 gnorpm-0.95.1.tar.gz
MandrakeSoft has released software upgrades to patch this vulnerability.
GNOME GnoRPM 0.94and earlier:
MandrakeSoft RPM 7.1 gnorpm-0.9-5mdk
ftp://ftp.linux.tucows.com/pub/distributions/Mandrake/Mandrake/updates/7.0/RPMS/gnorpm-0.9-5mdk.i586.rpm
MandrakeSoft RPM 6.1 gnorpm-0.9-5mdk
ftp://ftp.linux.tucows.com/pub/distributions/Mandrake/Mandrake/updates/6.1/RPMS/gnorpm-0.9-5mdk.i586.rpm
相关信息
|
