GDM is the GNOME Display Manager, and is commonly used to provide a graphical login for local users. Upgraded gdm packages are available for Slackware 9.0, 9.1, and -current. These fix two vulnerabilities which could allow a local user to crash or freeze gdm, preventing access to the machine until a reboot. Sites using gdm should upgrade, especially sites such as computer labs that use gdm to provide public or semi-public access.

Fetchmail is a mail-retrieval and forwarding utility. Upgraded fetchmail packages are available for Slackware 8.1, 9.0, 9.1, and
-current. These fix a vulnerability where a specially crafted email could crash fetchmail, preventing the user from downloading or forwarding their email.

Upgraded OpenSSH packages are available for Slackware 8.1, 9.0 and -
-current. These fix a buffer management error found in versions of OpenSSH earlier than 3.7. The possibility exists that this error could allow a remote exploit, so we recommend all sites running OpenSSH upgrade to the new OpenSSH package immediately.

New nfs-utils packages are available for Slackware 8.1, 9.0, and
-current to fix an off-by-one buffer overflow in xlog.c. Thanks to Janusz Niewiadomski for discovering and reporting this problem. The CVE (Common Vulnerabilities and Exposures) Project has assigned the identification number CAN-2003-0252 to this issue.

Upgraded OpenSSH 3.7.1p2 packages are available for Slackware 8.1, 9.0 and -current. This fixes security problems with PAM authentication. It also includes several code cleanups from Solar Designer. Slackware is not vulnerable to the PAM problem, and it is not believed that any of the other code cleanups fix exploitable security problems, not nevertheless sites may wish to upgrade. These are some of the more interesting entries from OpenSSH's ChangeLog so you can be the judge: [buffer.c] protect against double free; #660;
zardoz at users.sf.net - markus@cvs.openbsd.org 2003/09/18 08:49:45 [deattack.c misc.c session.c ssh-agent.c] more buffer allocation fixes; from Solar Designer; CAN-2003-0682; ok millert@ - (djm) Bug #676: Fix PAM stack corruption - (djm) Fix bad free() in PAM code

Upgraded OpenSSH 3.7.1p1 packages are available for Slackware 8.1, 9.0 and -current. These fix additional buffer management errors that were not corrected in the recent 3.7p1 release. The possibility exists that these errors could allow a remote exploit, so we recommend all sites running OpenSSH upgrade to the new OpenSSH package immediately.

Upgraded WU-FTPD packages are available for Slackware 9.0 and -
-current. These fix a problem where an attacker could use a specially crafted filename in conjunction with WU-FTPD's conversion feature (mostly used to compress files, or produce tar archives) to execute arbitrary commands on the server. In addition, a MAIL_ADMIN which has been found to be insecure has been disabled. We do not recommend deploying WU-FTPD in situations where security is required.

lftp is a file transfer program that connects to other hosts using FTP, HTTP, and other protocols. A security problem with lftp has been corrected with the release of lftp-2.6.10. New packages are available for Slackware 8.1, 9.0, 9.1, and -current. Any sites using lftp should upgrade to the new packages.

New nfs-utils packages are available for Slackware 8.1, 9.0, and
-current to replace the ones that were issued yesterday. A bug in has been fixed in utils/mountd/auth.c that could cause mountd to crash.

NOTE:  The original advisory quotes a section of the Slackware ChangeLog which had inadvertently reversed the options to quotacheck.  The correct option to use is 'm'.  A corrected advisory follows:


An upgraded sysvinit package is available which fixes a problem with the use of quotacheck in /etc/rc.d/rc.M.  The original version of rc.M calls quotacheck like this:

    echo "Checking filesystem quotas:  /sbin/quotacheck -avugM"     /sbin/quotacheck -avugM

The 'M' option is wrong.  This causes the filesystem to be remounted, and in the process any mount flags such as nosuid, nodev, noexec, and the like, will be reset.  The correct option to use here is 'm', which does not attempt to remount the partition:

    echo "Checking filesystem quotas:  /sbin/quotacheck -avugm"     /sbin/quotacheck -avugm

We recommend sites using file system quotas upgrade to this new package, or edit /etc/rc.d/rc.M accordingly.

Upgraded infozip packages are available for Slackware 9.0 and
-current. These fix a security issue where a specially crafted archive may overwrite files (including system files anywhere on the filesystem) upon extraction by a user with sufficient permissions.

Upgraded CUPS packages are available for Slackware 8.1, 9.0, and
-current to fix a denial of service attack vulnerability.

An upgraded sysvinit package is available which fixes a problem with the use of quotacheck in /etc/rc.d/rc.M. The original version of rc.M calls quotacheck like this: echo 'Checking filesystem quotas:
/sbin/quotacheck -avugM' /sbin/quotacheck -avugM The 'M' option is wrong. This causes the filesystem to be remounted, and in the process any mount flags such as nosuid, nodev, noexec, and the like, will be reset. The correct option to use here is 'm', which does not attempt to remount the partition: echo 'Checking filesystem quotas:
/sbin/quotacheck -avugm' /sbin/quotacheck -avugm We recommend sites using file system quotas upgrade to this new package, or edit /etc/rc.d/rc.M accordingly.

Sendmail buffer overflow fixed (NEW)

The sendmail packages in Slackware 8.0, 8.1, and 9.0 have been patched to fix a security problem.  Note that this vulnerablity is NOT the same one that was announced on March 3rd and requires a new fix.

All sites running sendmail should upgrade.  

More information on the problem can be found here:

http://www.sendmail.org/8.12.9.html

Upgraded gdm packages are available for Slackware 9.0 and -current.
These fix a security issue where a local user may use GDM to read any file on the system.

New BitchX packages are available to fix security problems found by Timo Sirainen. BitchX is an IRC (Internet Relay Chat) client. Under certain circumstances, a malicious IRC server could cause BitchX to crash, or possibly to run arbitrary code as the user running BitchX.
All sites running BitchX are advised to upgrade.

An upgrade for mod_ssl to version 2.8.14_1.3.27 is now available.
This version provides RSA blinding by default which prevents an extended timing analysis from revealing details of the secret key to an attacker. Note that this problem was already fixed within OpenSSL, so this is a 'double fix'. With this package, mod_ssl is secured even if OpenSSL is not. We recommend sites using mod_ssl upgrade to this new package.

New EPIC4 packages are available to fix security problems found by Timo Sirainen. EPIC4 is an IRC (Internet Relay Chat) client. Under certain circumstances, a malicious IRC server could cause EPIC4 to crash, or possibly to run arbitrary code as the user running EPIC4.
All sites running EPIC4 are advised to upgrade.

A key validation bug which results in all user IDs on a given key being treated with the validity of the most-valid user ID on that key has been fixed with the release of GnuPG 1.2.2. We recommend sites using GnuPG upgrade to this new package.

Samba security problem fixed

The samba packages in Slackware 8.1 and 9.0 have been upgraded to Samba 2.2.8a to fix a security problem.

All sites running samba should upgrade.

ID	Name	Severity
18732	Slackware 9.0 / 9.1 / current : gdm security update (SSA:2003-300-01)	low
18731	Slackware 8.1 / 9.0 / 9.1 / current : fetchmail security update (SSA:2003-300-02)	medium
18730	Slackware 8.1 / 9.0 / current : OpenSSH Security Advisory (SSA:2003-259-01)	high
18729	Slackware 8.1 / 9.0 / current : nfs-utils off-by-one overflow fixed (SSA:2003-195-01)	high
18728	Slackware 8.1 / 9.0 / current : New OpenSSH packages (SSA:2003-266-01)	high
18727	Slackware 8.1 / 9.0 / current : OpenSSH updated again (SSA:2003-260-01)	high
18726	Slackware 9.0 / current : WU-FTPD Security Advisory (SSA:2003-259-03)	high
18725	Slackware 8.1 / 9.0 / 9.1 / current : lftp security update (SSA:2003-346-01)	high
18724	Slackware 8.1 / 9.0 / current : nfs-utils packages replaced (SSA:2003-195-01b)	high
18723	SSA-2003-141-06a REVISED quotacheck security fix in rc.M	high
18722	Slackware 9.0 / current : unzip vulnerability patched (SSA:2003-237-01)	low
18721	Slackware 8.1 / 9.0 / current : CUPS DoS vulnerability fixed (SSA:2003-149-01)	high
18720	Slackware 9.0 : quotacheck security fix in rc.M (SSA:2003-141-06)	high
18719	SSA-2003-213-01 Sendmail buffer overflow fixed (NEW)	high
18717	Slackware 9.0 / current : GDM security update (SSA:2003-236-01)	high
18716	Slackware 8.1 / 9.0 : BitchX security fixes (SSA:2003-141-02)	high
18715	Slackware 9.0 : mod_ssl RSA blinding fixes (SSA:2003-141-05)	high
18714	Slackware 8.1 / 9.0 : EPIC4 security fixes (SSA:2003-141-01)	high
18713	Slackware 9.0 : GnuPG key validation fix (SSA:2003-141-04)	high
18712	SSA-2003-336-01b Samba security problem fixed	high

Detections

Analytics

Slackware Local Security Checks Family for Nessus

low

medium

high

high

high

high

high

high

high

high

low

high

high

high

high

high

high

high

high

high