Secunia Logo
 Vulnerability IntelligenceVulnerability ScanningCommunity - new!Blog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > Debian update for gnocatan
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
Debian update for gnocatan
Secunia Advisory: SA9019
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2003-06-13
Last Update: 2003-06-30
Popularity: 6,312 views

Critical:
Moderately critical
Impact: DoS
System access
Where: From remote
Solution Status: Vendor Patch

OS:Debian GNU/Linux 3.0
Debian GNU/Linux unstable alias sid
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2003-0433
Description:
Debian has issued updated packages for gnocatan. These fix several vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) on a vulnerable system or potentially compromise it.

The vulnerabilities are all caused due to boundary errors. These can be exploited to cause buffer overflows, which potentially allow execution of arbitrary code on a system running a vulnerable version of gnocatan server.

Solution:
Updated packages:

-- Debian GNU/Linux 3.0 alias woody --

Source archives:

http://security.debian.org/pool/updat...g/gnocatan/gnocatan_0.6.1-5woody2.dsc
Size/MD5 checksum: 682 b1bbeeac4f0d2308eebdfb76a62a0aab
http://security.debian.org/pool/updat...ocatan/gnocatan_0.6.1-5woody2.diff.gz
Size/MD5 checksum: 8897 53fb916da81a6a0f00466903249e7082
http://security.debian.org/pool/updat...g/gnocatan/gnocatan_0.6.1.orig.tar.gz
Size/MD5 checksum: 625157 a156f3fe3a50fbf91e9857a9d012e588

Architecture independent components:

http://security.debian.org/pool/updat...n/gnocatan-data_0.6.1-5woody2_all.deb
Size/MD5 checksum: 22134 79c55fdff016239fdda024b1ccdbea59
http://security.debian.org/pool/updat...n/gnocatan-help_0.6.1-5woody2_all.deb
Size/MD5 checksum: 264058 ce60fd8505a0058104f2b69da80202c1

Alpha architecture:

http://security.debian.org/pool/updat...ocatan-client_0.6.1-5woody2_alpha.deb
Size/MD5 checksum: 105142 0709d1e9f96aca6eb8c9bc8aef730d22
http://security.debian.org/pool/updat...ocatan-server_0.6.1-5woody2_alpha.deb
Size/MD5 checksum: 92192 390a7cbbe2e14f6a6cd35c04d8721a75

ARM architecture:

http://security.debian.org/pool/updat...gnocatan-client_0.6.1-5woody2_arm.deb
Size/MD5 checksum: 77730 aa651b7ff9996003afc8481d586b7950
http://security.debian.org/pool/updat...gnocatan-server_0.6.1-5woody2_arm.deb
Size/MD5 checksum: 67770 835cec376ba7d55c80b13e4429eae02e

Intel IA-32 architecture:

http://security.debian.org/pool/updat...nocatan-client_0.6.1-5woody2_i386.deb
Size/MD5 checksum: 75358 2d71d64170bc8953b041d22c606df3b0
http://security.debian.org/pool/updat...nocatan-server_0.6.1-5woody2_i386.deb
Size/MD5 checksum: 67128 574d0ae1a4565a07763e1e227581aedb

Intel IA-64 architecture:

http://security.debian.org/pool/updat...nocatan-client_0.6.1-5woody2_ia64.deb
Size/MD5 checksum: 130914 caab2e87dc0bb50465e6620dbdd504fe
http://security.debian.org/pool/updat...nocatan-server_0.6.1-5woody2_ia64.deb
Size/MD5 checksum: 117702 505441d37e466d521824a0738e926bf7

HP Precision architecture:

http://security.debian.org/pool/updat...nocatan-client_0.6.1-5woody2_hppa.deb
Size/MD5 checksum: 93064 673d0277c1578282bb60d579f606a0ee
http://security.debian.org/pool/updat...nocatan-server_0.6.1-5woody2_hppa.deb
Size/MD5 checksum: 84762 df1bfe75ac3300029dd8eeda369f9667

Motorola 680x0 architecture:

http://security.debian.org/pool/updat...nocatan-client_0.6.1-5woody2_m68k.deb
Size/MD5 checksum: 71082 cbcfbe02ea4c646ca955253ba4a1eb12
http://security.debian.org/pool/updat...nocatan-server_0.6.1-5woody2_m68k.deb
Size/MD5 checksum: 63392 2a2274a6e8a11c9a2dd5d320a44c67cd

Big endian MIPS architecture:

http://security.debian.org/pool/updat...nocatan-client_0.6.1-5woody2_mips.deb
Size/MD5 checksum: 85844 c0beabd726b30b179e82bf96d275bea4
http://security.debian.org/pool/updat...nocatan-server_0.6.1-5woody2_mips.deb
Size/MD5 checksum: 83618 cc70072838a64c7d471917bd64e89519

Little endian MIPS architecture:

http://security.debian.org/pool/updat...catan-client_0.6.1-5woody2_mipsel.deb
Size/MD5 checksum: 85374 bb5d95c8fceea8c463af76b9c8b4fea6
http://security.debian.org/pool/updat...catan-server_0.6.1-5woody2_mipsel.deb
Size/MD5 checksum: 83260 9668a5819e25e7fea501827ece97c28c

PowerPC architecture:

http://security.debian.org/pool/updat...atan-client_0.6.1-5woody2_powerpc.deb
Size/MD5 checksum: 82576 037b35ee54760aa433f896fb66fa92dc
http://security.debian.org/pool/updat...atan-server_0.6.1-5woody2_powerpc.deb
Size/MD5 checksum: 72666 eb1a2a563be5c966f7d9526e468d8e9a

IBM S/390 architecture:

http://security.debian.org/pool/updat...nocatan-client_0.6.1-5woody2_s390.deb
Size/MD5 checksum: 77832 2f941a349efe936220fe4f3de91c0f71
http://security.debian.org/pool/updat...nocatan-server_0.6.1-5woody2_s390.deb
Size/MD5 checksum: 72570 22fe1ddd1423adf7a41509fc103e743e

Sun Sparc architecture:

http://security.debian.org/pool/updat...ocatan-client_0.6.1-5woody2_sparc.deb
Size/MD5 checksum: 80650 50ac9e304c31fa3402f0bf9551575570
http://security.debian.org/pool/updat...ocatan-server_0.6.1-5woody2_sparc.deb
Size/MD5 checksum: 73384 962e409ce937931bd46b1cde0b9feee3


-- Debian GNU/Linux unstable alias sid --

The vulnerabilities will reportedly be fixed soon.

Provided and/or discovered by:
Bas Wijnen

Original Advisory:
http://www.debian.org/security/2003/dsa-315

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

2nd Dec, 2008
New advisories: 14
New vulnerabilities: 21
Updated advisories: 26

Less // 385 views
Linksys WRT160N Cross-Site Scripting Vulnerability
Less // 365 views
IBM Rational ClearQuest Multiple Vulnerabilities
Not // 289 views
Debian update for flamethrower
Not // 279 views
flamethrower Insecure Temporary Files
Less // 337 views
IBM Rational ClearCase Cross-Site Scripting Vulnerability
Not // 325 views
DAHDI "ZT_SPANCONFIG" IOCTL Privilege Escalation Vulnerability
Not // 320 views
Zaptel "ZT_SPANCONFIG" IOCTL Privilege Escalation Vulnerabilities
Moderately // 309 views
Rumpus Multiple Vulnerabilities
Less // 325 views
bcoos "cid" SQL Injection Vulnerability
Moderately // 339 views
ASP Portal "ASPPortal.mdb" Database Disclosure Security Issue

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. Sun Java JDK / JRE Multiple Vulnerabilities // 67 views
2. Linksys WRT160N Cross-Site Scripting Vulnerability // 31 views
3. ClamAV "cli_check_jpeg_exploit()" Denial of Service Vulnerability // 30 views
4. Adobe Acrobat/Reader Multiple Vulnerabilities // 29 views
5. IBM Rational ClearQuest Multiple Vulnerabilities // 26 views
6. Debian update for flamethrower // 26 views
7. IBM Rational ClearCase Cross-Site Scripting Vulnerability // 23 views
8. Mozilla Firefox 3 Multiple Vulnerabilities // 22 views
9. Zaptel "ZT_SPANCONFIG" IOCTL Privilege Escalation Vulnerabilities // 22 views
10. bcoos "cid" SQL Injection Vulnerability // 21 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008