Secunia Logo
Netsikker nu! 2008
 Vulnerability IntelligenceVulnerability ScanningBlog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > Debian update for CVS
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
Debian update for CVS
Secunia Advisory: SA10614
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2004-01-13
Popularity: 6,154 views

Critical:
Less critical
Impact: Security Bypass
Where: From remote
Solution Status: Vendor Patch

OS:Debian GNU/Linux 3.0
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2003-0977
Description:
Debian has issued updated packages for cvs. These fix a vulnerability, which can be exploited by malicious users to create arbitrary folders and possibly files in the root of the host's file system.

For more information:
SA10388

Solution:
Updated packages:

Debian 3.0 (stable)

Source archives:

http://security.debian.org/pool/updat.../c/cvs/cvs_1.11.1p1debian.orig.tar.gz
Size/MD5 checksum: 2621658 500965ab9702b31605f8c58aa21a6205
http://security.debian.org/pool/updates/main/c/cvs/cvs_1.11.1p1debian-9.diff.gz
Size/MD5 checksum: 49416 74746359d1b7a9cd0459ddeaa6ec52a7
http://security.debian.org/pool/updates/main/c/cvs/cvs_1.11.1p1debian-9.dsc
Size/MD5 checksum: 681 c4089836fe7f6b777920dd37d09e982d

alpha architecture (DEC Alpha)

http://security.debian.org/pool/updat.../c/cvs/cvs_1.11.1p1debian-9_alpha.deb
Size/MD5 checksum: 1178446 3cf372c97a66e10408a1993c700e6455

arm architecture (ARM)

http://security.debian.org/pool/updates/main/c/cvs/cvs_1.11.1p1debian-9_arm.deb
Size/MD5 checksum: 1104912 99a2b7f564e27a90cb6ac38db7a9fa18

hppa architecture (HP PA RISC)

http://security.debian.org/pool/updates/main/c/cvs/cvs_1.11.1p1debian-9_hppa.deb
Size/MD5 checksum: 1147010 b63a001a84b329e9d34881d7f5489538

i386 architecture (Intel ia32)

http://security.debian.org/pool/updates/main/c/cvs/cvs_1.11.1p1debian-9_i386.deb
Size/MD5 checksum: 1085664 6d7f9f5a8730595d9ad88560b7474816

ia64 architecture (Intel ia64)

http://security.debian.org/pool/updates/main/c/cvs/cvs_1.11.1p1debian-9_ia64.deb
Size/MD5 checksum: 1270560 d7b54232097970cb7bdbded45509c45b

m68k architecture (Motorola Mc680x0)

http://security.debian.org/pool/updates/main/c/cvs/cvs_1.11.1p1debian-9_m68k.deb
Size/MD5 checksum: 1065192 ba851f9e52e3e2997c4539f326447fcc

mips architecture (MIPS (Big Endian))

http://security.debian.org/pool/updates/main/c/cvs/cvs_1.11.1p1debian-9_mips.deb
Size/MD5 checksum: 1129342 129daa41b09beab02ec928d29804f013

mipsel architecture (MIPS (Little Endian))

http://security.debian.org/pool/updat...c/cvs/cvs_1.11.1p1debian-9_mipsel.deb
Size/MD5 checksum: 1130598 17e765475f74a5915506b469f5ddd136

powerpc architecture (PowerPC)

http://security.debian.org/pool/updat.../cvs/cvs_1.11.1p1debian-9_powerpc.deb
Size/MD5 checksum: 1115824 1c16543513c2dd1ca7e76390b8203f86

s390 architecture (IBM S/390)

http://security.debian.org/pool/updates/main/c/cvs/cvs_1.11.1p1debian-9_s390.deb
Size/MD5 checksum: 1096674 91003d24a1db0be271fe41296a76390c

sparc architecture (Sun SPARC/UltraSPARC)

http://security.debian.org/pool/updat.../c/cvs/cvs_1.11.1p1debian-9_sparc.deb
Size/MD5 checksum: 1106822 e93a0f77253cadcfcce494f828f6fd2f

Original Advisory:
http://lists.debian.org/debian-securi...-security-announce-2004/msg00017.html

Other References:
SA10388:
http://secunia.com/advisories/10388/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

15th Oct, 2008
New advisories: 16
New vulnerabilities: 60
Updated advisories: 36

Moderately // 274 views
WordPress WP Comment Remix Plugin Multiple Vulnerabilities
Less // 240 views
Elxis mod_language.php Cross-Site Scripting Vulnerability
Moderately // 261 views
MyPHPDating "id" SQL Injection Vulnerability
Moderately // 318 views
BEA WebLogic Server Multiple Authorizers Security Bypass
Moderately // 279 views
BEA WebLogic Workshop NetUI Pageflow Information Disclosure Vulnerability
Moderately // 257 views
BEA WebLogic Workshop NetUI Tags Information Disclosure Vulnerability
Highly // 383 views
BEA WebLogic Server Multiple Vulnerabilities
Moderately // 427 views
Oracle Products Multiple Vulnerabilities
Moderately // 335 views
Webscene eCommerce "level" SQL Injection Vulnerability
Moderately // 458 views
Sun Solaris "sadmind" Buffer Overflow Vulnerability

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. Oracle Products Multiple Vulnerabilities // 46 views
2. WordPress WP Comment Remix Plugin Multiple Vulnerabilities // 39 views
3. Sun Solaris "sadmind" Buffer Overflow Vulnerability // 39 views
4. BEA WebLogic Server Multiple Vulnerabilities // 38 views
5. Elxis mod_language.php Cross-Site Scripting Vulnerability // 37 views
6. Webscene eCommerce "level" SQL Injection Vulnerability // 35 views
7. MyPHPDating "id" SQL Injection Vulnerability // 33 views
8. BEA WebLogic Workshop NetUI Pageflow Information Disclosure Vulnerability // 33 views
9. BEA WebLogic Server Multiple Authorizers Security Bypass // 33 views
10. BEA WebLogic Workshop NetUI Tags Information Disclosure Vulnerability // 32 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008