From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 4.0.0 (2022-12-14) on finch.gentoo.org X-Spam-Level: X-Spam-Status: No, score=0.3 required=5.0 tests=DMARC_NONE,MAILING_LIST_MULTI, RDNS_DYNAMIC autolearn=no autolearn_force=no version=4.0.0 Received: from chiba.3jane.net (localhost [127.0.0.1]) by chiba.3jane.net (Postfix) with ESMTP id 9BE83AC405; Wed, 31 Jul 2002 09:30:18 -0500 (CDT) Received: from okhomes.homedns.org (ca-stmnca-cuda1-blade2b-101.stmnca.adelphia.net [68.65.195.101]) by chiba.3jane.net (Postfix) with ESMTP id E1BE5AC3BB for ; Wed, 31 Jul 2002 09:29:56 -0500 (CDT) Received: by okhomes.homedns.org (Postfix, from userid 1000) id 09D74203CE; Wed, 31 Jul 2002 07:29:44 -0700 (PDT) From: Seemant Kulleen To: gentoo-announce@gentoo.org, scoop@freshmeat.net Message-Id: <20020731072944.1b7dfcb7.seemant@gentoo.org> X-Mailer: Sylpheed version 0.8.1claws (GTK+ 1.2.10; ) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-BeenThere: gentoo-announce@gentoo.org X-Mailman-Version: 2.0.6 Precedence: bulk Date: Wed, 31 Jul 2002 07:29:44 -0700 Subject: [gentoo-dev] [gentoo-announce] GLSA: ppp Sender: gentoo-dev-admin@gentoo.org Errors-To: gentoo-dev-admin@gentoo.org X-BeenThere: gentoo-dev@gentoo.org List-Help: List-Post: List-Subscribe: , List-Id: Gentoo Linux developer list List-Unsubscribe: , List-Archive: X-Archives-Salt: 50ed57fa-d45b-4f55-995c-09ae816902c8 X-Archives-Hash: 55180cd7296c577846962bb781efdeae - ----------------------------------------------------------------------- GLSA: GENTOO LINUX SECURITY ANNOUNCEMENT - ----------------------------------------------------------------------- PACKAGE : ppp -- net dialup/point-to-point protocol SUMMARY : security vulnerability in symlink creation DATE : Wed Jul 31 14:29:24 UTC 2002 - ----------------------------------------------------------------------- OVERVIEW A race condition exists in the pppd program that may be exploited in order to change the permissions of an arbitrary file. DETAIL >>From the FreeBSD report: The file specified as the tty device is opened by pppd, and the permissions are recorded. If pppd fails to initialize the tty device in some way (such as a failure of tcgetattr(3)), then pppd will then attempt to restore the original permissions by calling chmod(2). The call to chmod(2) is subject to a symlink race, so that the permissions may `restored' on some other file. The full advisory may be found here: ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02%3A32.pppd.asc SOLUTION It is recommended that all Gentoo Linux users who are running net-dialup/ppp-2.4.1-r9 and earlier update their systems as follows. emerge rsync emerge ppp - ------------------------------------------------------------------------ aliz@gentoo.org seemant@gentoo.org drobbins@gentoo.org - ------------------------------------------------------------------------ -- Seemant Kulleen Developer and Project Co-ordinator, Gentoo Linux http://www.gentoo.org/~seemant _______________________________________________ gentoo-announce mailing list gentoo-announce@gentoo.org http://lists.gentoo.org/mailman/listinfo/gentoo-announce