Mandrake update for slocate - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

Mandrake update for slocate

Secunia Advisory:	SA10702
Release Date:	2004-01-26

Critical:	Not critical
Impact:	Privilege escalation
Where:	Local system
Solution Status:	Vendor Patch

OS:	Mandrake Corporate Server 2.x Mandrake Linux 9.x


CVE reference:	CVE-2003-0848 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: MandrakeSoft has issued updated packages for slocate. These fix a vulnerability, which can be exploited by malicious, local users to gain "slocate" group privileges. For more information: SA9962 Solution: Upgrade automatically using MandrakeUpdate or manually by downloading the updated packages from one of MandrakeSoft's FTP server mirrors: http://www.mandrakesecure.net/en/ftp.php Updated packages: -- Corporate Server 2.1 -- 671ffe86f5f126c12cef97de694a382c corporate/2.1/RPMS/slocate-2.7-2.1.C21mdk.i586.rpm a8bc7ae36c40ab05cda054c0faee616a corporate/2.1/SRPMS/slocate-2.7-2.1.C21mdk.src.rpm x86_64: 4ef15319c849f40ee280a78809e2792e x86_64/corporate/2.1/RPMS/slocate-2.7-2.1.C21mdk.x86_64.rpm a8bc7ae36c40ab05cda054c0faee616a x86_64/corporate/2.1/SRPMS/slocate-2.7-2.1.C21mdk.src.rpm -- Mandrake Linux 9.1 -- 178a0c6c116e64c67887c56fcf8f24ff 9.1/RPMS/slocate-2.7-2.1.91mdk.i586.rpm b33e093e2178db9b22b8c7dc84f506d2 9.1/SRPMS/slocate-2.7-2.1.91mdk.src.rpm PPC: d77bee6d3e3dfb380b78feedb2647f51 ppc/9.1/RPMS/slocate-2.7-2.1.91mdk.ppc.rpm b33e093e2178db9b22b8c7dc84f506d2 ppc/9.1/SRPMS/slocate-2.7-2.1.91mdk.src.rpm -- Mandrake Linux 9.2 -- d84f9a28b73dce95ef8948efcec4129b 9.2/RPMS/slocate-2.7-2.1.92mdk.i586.rpm c69b0fd21ff789e387609eef25765f07 9.2/SRPMS/slocate-2.7-2.1.92mdk.src.rpm AMD64: 6ebc353d5ea7c470dfc23020fc29d80a amd64/9.2/RPMS/slocate-2.7-2.1.92mdk.amd64.rpm c69b0fd21ff789e387609eef25765f07 amd64/9.2/SRPMS/slocate-2.7-2.1.92mdk.src.rpm Original Advisory: http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:004 Other References: SA9962: http://secunia.com/advisories/9962/



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

374 Related Secunia Security Advisories, displaying 10

1. Mandriva update for kernel

2. Mandriva update for libtiff

3. Mandriva update for gnupg

4. Mandriva update for php

5. Mandriva update for mod_auth_ldap

6. Mandriva update for cups

7. Mandriva update for tetex

8. Mandriva update for xpdf

9. Mandriva update for printer-filters-utils

10. Mandriva update for sudo

Show all related advisories

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Red Hat update for tomcat

2.	HP-UX update for Apache

3.	Red Hat update for openoffice.org

4.	Opera Multiple Vulnerabilities

5.	OpenOffice "rtl_allocateMe mory()" Truncation Vulnerability

6.	JustSystems Ichitaro Products Unspecified Code Execution Vulnerability

7.	Red Hat Directory Server Multiple Vulnerabilities

8.	R "javareconf" Insecure Temporary Files

9.	Quick Poll "id" SQL Injection Vulnerability

10.	Ampache "gather-message s.sh" Insecure Temporary Files