Višestruke ranjivosti programskog paketa rpm

U radu programskog paketa rpm uočeni su i ispravljeni sigurnosni propusti koje udaljeni napadači mogu iskoristiti za proizvoljno pokretanje programskog koda i DoS napad.

Paket:	rpm 4.x
Operacijski sustavi:	Fedora 15, Fedora 16
Kritičnost:	6.9
Problem:	neodgovarajuća provjera ulaznih podataka, pogreška u programskoj funkciji, pogreška u programskoj komponenti
Iskorištavanje:	udaljeno
Posljedica:	proizvoljno izvršavanje programskog koda, uskraćivanje usluga (DoS)
Rješenje:	programska zakrpa proizvođača
CVE:	CVE-2012-0060, CVE-2012-0061, CVE-2012-0815, CVE-2011-3378
Izvorni ID preporuke:	FEDORA-2012-5421
Izvor:	Fedora

Problem:
Uočene su pogreške u programskim funkcijama "regionSwab" i "headerLoad", programskoj komponenti "rpmio/rpmpgp.c" te neodgovarajuća provjera ulaznih podataka povezana s programskom funkcijama "rpmReadSignature", "headerVerify" i "headerVerifyInfo".
Posljedica:
Navedene propuste udaljeni napadači mogu iskoristiti za proizvoljno izvršavanje programskog koda i napad uskraćivanja usluga.
Rješenje:
Kako bi se zaštitili, korisnicima se savjetuje korištenje odgovarajuće programske nadogradnje.

Izvorni tekst preporuke

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-5421
2012-04-06 20:56:54
--------------------------------------------------------------------------------

Name        : rpm
Product     : Fedora 16
Version     : 4.9.1.3
Release     : 1.fc16
URL         : http://www.rpm.org/
Summary     : The RPM package management system
Description :
The RPM Package Manager (RPM) is a powerful command line driven
package management system capable of installing, uninstalling,
verifying, querying, and updating software packages. Each software
package consists of an archive of files along with information about
the package like its version, a description, etc.

--------------------------------------------------------------------------------
Update Information:

This update fixes various input-validation issues in rpm:
CVE-2012-0060, CVE-2012-0061 and CVE-2012-0815

--------------------------------------------------------------------------------
ChangeLog:

* Tue Apr  3 2012 Panu Matilainen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.1.3-1
- update to 4.1.9.3 (http://rpm.org/wiki/Releases/4.9.1.3)
- fixes CVE-2012-0060, CVE-2012-0061 and CVE-2012-0815
* Wed Mar  7 2012 Panu Matilainen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.1.2-6
- fix memory corruption on rpmdb size estimation (#766260)
- fix couple of memleaks in python bindings (#782147)
- fix regression in verify output formatting (#797964)
- dont process spec include in false branch of if (#782970)
- only warn on missing excluded files on build (#745629)
- dont free up file info sets on test transactions
* Thu Feb  9 2012 Panu Matilainen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.1.2-5
- adjust font detection rules for libmagic change (#757105)
- fix classification of ELF binaries with setuid/setgid bit (#758251)
- switch back to smaller BDB cache default (#752897)
* Tue Jan 24 2012 Harald Hoyer <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 4.9.1.2-4.1
- add temporary rpmlib patch to support filesystem transition
  https://fedoraproject.org/wiki/Features/UsrMove
* Thu Dec 15 2011 Karsten Hopp <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 4.9.1.2-4
- bump release
* Thu Dec 15 2011 Karsten Hopp <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 4.9.1.2-3
- warn but dont fail the build if STABS encountered by debugedit 
  (#725378, Panu Matilainen)
* Wed Nov 30 2011 Dennis Gilmore <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.1.2-2
- conditionally apply arm patch for hardfp on all arches but arm softfp ones
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #744104 - CVE-2012-0815 rpm: incorrect handling of negated offsets
in headerVerifyInfo()
        https://bugzilla.redhat.com/show_bug.cgi?id=744104
  [ 2 ] Bug #744858 - CVE-2012-0060 rpm: insufficient validation of region tags
        https://bugzilla.redhat.com/show_bug.cgi?id=744858
  [ 3 ] Bug #798585 - CVE-2012-0061 rpm: improper validation of header contents
total size in headerLoad()
        https://bugzilla.redhat.com/show_bug.cgi?id=798585
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update rpm' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
https://admin.fedoraproject.org/mailman/listinfo/package-announce

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-5420
2012-04-06 20:56:51
--------------------------------------------------------------------------------

Name        : rpm
Product     : Fedora 15
Version     : 4.9.1.3
Release     : 1.fc15
URL         : http://www.rpm.org/
Summary     : The RPM package management system
Description :
The RPM Package Manager (RPM) is a powerful command line driven
package management system capable of installing, uninstalling,
verifying, querying, and updating software packages. Each software
package consists of an archive of files along with information about
the package like its version, a description, etc.

--------------------------------------------------------------------------------
Update Information:

This update fixes various input-validation issues in rpm:
CVE-2012-0060, CVE-2012-0061 and CVE-2012-0815

--------------------------------------------------------------------------------
ChangeLog:

* Tue Apr  3 2012 Panu Matilainen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.1.3-1
- update to 4.1.9.3 (http://rpm.org/wiki/Releases/4.9.1.3)
- fixes CVE-2012-0060, CVE-2012-0061 and CVE-2012-0815
* Thu Feb  9 2012 Panu Matilainen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.1.2-4
- adjust font detection rules for libmagic change (#757105)
- fix classification of ELF binaries with setuid/setgid bit (#758251)
- switch back to smaller BDB cache default (#752897)
* Tue Jan 24 2012 Harald Hoyer <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 4.9.1.2-3.3
- add temporary rpmlib patch to support filesystem transition
  https://fedoraproject.org/wiki/Features/UsrMove
* Wed Dec 21 2011 Dennis Gilmore <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.1.2-3.2
- only conditionally apply the armhfp logic code we do need the hfp macros
everywhere
* Wed Nov 30 2011 Dennis Gilmore <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.1.2-3.1
- conditionally apply arm patch for hardfp on all arches but arm softfp ones
* Fri Sep 30 2011 Panu Matilainen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.1.2-1
- update to 4.9.1.2 (CVE-2011-3378)
- drop upstreamed rpmdb signal patch
* Mon Sep 19 2011 Panu Matilainen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.1.1-2
- fix signal blocking/unblocking regression on rpmdb open/close (#739492)
* Tue Aug  2 2011 Panu Matilainen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.1.1-1
- update to 4.9.1.1
* Tue Jul 19 2011 Panu Matilainen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.1-2
- fix recursion of directories with trailing slash in file list (#722474)
* Fri Jul 15 2011 Panu Matilainen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.1-1
- update to 4.9.1 (http://rpm.org/wiki/Releases/4.9.1)
- drop no longer needed patches
* Thu Jun 16 2011 Panu Matilainen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.0-10
- rebuild to fix a missing interpreter dependency due to bug #712251
* Fri Jun 10 2011 Panu Matilainen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.0-9
- fix crash if prep or changelog section in spec is empty (#706959)
- fix crash on macro which undefines itself
- fix script dependency generation with file 5.07 string changes (#712251)
* Thu May 26 2011 Panu Matilainen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 4.9.0-8
- add dwarf-4 support to debugedit (#707677)
- generate build-id symlinks for all filenames sharing a build-id (#641377)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #744104 - CVE-2012-0815 rpm: incorrect handling of negated offsets
in headerVerifyInfo()
        https://bugzilla.redhat.com/show_bug.cgi?id=744104
  [ 2 ] Bug #744858 - CVE-2012-0060 rpm: insufficient validation of region tags
        https://bugzilla.redhat.com/show_bug.cgi?id=744858
  [ 3 ] Bug #798585 - CVE-2012-0061 rpm: improper validation of header contents
total size in headerLoad()
        https://bugzilla.redhat.com/show_bug.cgi?id=798585
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update rpm' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
https://admin.fedoraproject.org/mailman/listinfo/package-announce

Višestruke ranjivosti programskog paketa rpm

Tražilica portala

Aktivnosti

O CIS-u

Posljednje vijesti

Posljednji dokumenti

Višestruke ranjivosti programskog paketa rpm

Tražilica portala

Aktivnosti

O CIS-u

Posljednje sigurnosne preporuke

Posljednje vijesti

Popularni članci

Posljednji dokumenti