Secunia - Stay Secure
Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
Software Inspectors
  Scan Online
  Personal (PSI)
  Network (NSI 2.0)

Solutions For
  Security Professionals
  Security Vendors

Free Solutions For
  Open Communities
  Journalists & Media

Secunia Advisories
  Search
  Historic Advisories
  Listed By Product
  Listed By Vendor
  Statistics / Graphs
  Secunia Research
  Report Vulnerability
  About Advisories

Virus Information
  Chronological List
  Last 10 Virus Alerts
  About Virus Information

Secunia Customers
  Customer Area


Debian update for noweb Advisory Available in Danish 

Secunia Advisory: SA18812  
Release Date: 2006-02-13

Critical:
Less critical
Impact: Privilege escalation
Where: Local system
Solution Status: Vendor Patch

OS:Debian GNU/Linux 3.0
Debian GNU/Linux 3.1
Debian GNU/Linux unstable alias sid


CVE reference:CVE-2005-3342 (Secunia mirror)
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS!


Description:
Debian has issued an update for noweb. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges.

For more information:
SA18809

Solution:
Apply updated packages.

-- Debian GNU/Linux 3.0 alias woody --

Source archives:

http://security.debian.org/pool/updates/main/n/noweb/noweb_2.9a-7.4.dsc
Size/MD5 checksum: 607 bf3b668844d776f0a6407b0d101387c8
http://security.debian.org/pool/updates/main/n/noweb/noweb_2.9a-7.4.diff.gz
Size/MD5 checksum: 41695 7b801aef10ce6464b1877d17975f82a4
http://security.debian.org/pool/updates/main/n/noweb/noweb_2.9a.orig.tar.gz
Size/MD5 checksum: 687372 1096b16aaa281a97e269eb5d80236296

Alpha architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.9a-7.4_alpha.deb
Size/MD5 checksum: 1339666 ead77005297d67d7edbae25beb36a3c1

ARM architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.9a-7.4_arm.deb
Size/MD5 checksum: 1061550 0bf9e6154471326e6d075ff1de8377d6

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.9a-7.4_i386.deb
Size/MD5 checksum: 964162 d825f5232dc13f83f64e7c7c7a1da1d5

HP Precision architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.9a-7.4_hppa.deb
Size/MD5 checksum: 1257692 ca737693fa77c65177318945ef0ebb21

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.9a-7.4_m68k.deb
Size/MD5 checksum: 920590 9a2e3e06262ccbcf8f5a4d2c9a86a7d5

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.9a-7.4_mips.deb
Size/MD5 checksum: 1145392 08e92aef2a6dd4266b55a8daed3277b2

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.9a-7.4_mipsel.deb
Size/MD5 checksum: 1142188 9a97dbda4c8451ceeabaa89e3d27ea14

PowerPC architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.9a-7.4_powerpc.deb
Size/MD5 checksum: 1063836 2b752a9a33a3cdde5bd638cb1ce29301

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.9a-7.4_s390.deb
Size/MD5 checksum: 984310 659e07e3b2b1be956b97f6eab9afa478

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.9a-7.4_sparc.deb
Size/MD5 checksum: 1094822 31bad539ee4c6cca00a982a168cd8e31


-- Debian GNU/Linux 3.1 alias sarge --

Source archives:

http://security.debian.org/pool/updates/main/n/noweb/noweb_2.10c-3.2.dsc
Size/MD5 checksum: 613 caa2eea783c5422d9228b21d0336d15c
http://security.debian.org/pool/updates/main/n/noweb/noweb_2.10c-3.2.diff.gz
Size/MD5 checksum: 11237 5b3d362fb1c1bac5c547969fed01a6a3
http://security.debian.org/pool/updates/main/n/noweb/noweb_2.10c.orig.tar.gz
Size/MD5 checksum: 712332 30bbacf1fb2a402410e5ad2fb600d9fc

Alpha architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.10c-3.2_alpha.deb
Size/MD5 checksum: 538598 08451e42ced3107985de6175e579796a

AMD64 architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.10c-3.2_amd64.deb
Size/MD5 checksum: 535386 973680293dc7b0e778bcbb25db41a0b1

ARM architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.10c-3.2_arm.deb
Size/MD5 checksum: 519836 9845b6c4fd1d774393bc1a502a9c94fb

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.10c-3.2_i386.deb
Size/MD5 checksum: 516632 1cb91db43945c118f9f66b48ed2e6daa

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.10c-3.2_ia64.deb
Size/MD5 checksum: 552976 29019df9ab966e815ddf02abbaa20e91

HP Precision architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.10c-3.2_hppa.deb
Size/MD5 checksum: 525442 b6cfdbb4482a73bedc16156d141e1c09

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.10c-3.2_m68k.deb
Size/MD5 checksum: 520616 9ed973c5d96aff4e3b20a437a9228ef3

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.10c-3.2_mips.deb
Size/MD5 checksum: 532836 947e80ca3fae44b4152314d5433d92d6

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.10c-3.2_mipsel.deb
Size/MD5 checksum: 530754 095d4a98e980b8085c5c91599e69975b

PowerPC architecture:

http://security.debian.org/pool/updat.../n/noweb/nowebm_2.10c-3.2_powerpc.deb
Size/MD5 checksum: 522700 f8828ede194357d5f7e062aa172c8cb7

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.10c-3.2_s390.deb
Size/MD5 checksum: 524992 b5aa4136babd2b29b37c1c899e65428c

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/n/noweb/nowebm_2.10c-3.2_sparc.deb
Size/MD5 checksum: 522776 4d8491cba2d49a6ec196d0241ac1b840


-- Debian GNU/Linux unstable alias sid --

Fixed in version 2.10c-3.2.

Original Advisory:
http://www.debian.org/security/2006/dsa-968

Other References:
SA18809:
http://secunia.com/advisories/18809/


Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

1353 Related Secunia Security Advisories, displaying 10

1. Debian update for tiff
2. Debian update for libxml2
3. Debian update for postfix
4. Debian update for pdns
5. Debian update for httracker
6. Debian update for opensc
7. Debian update for cupsys
8. Debian update for libxslt
9. Debian update for newsx
10. Debian update for ruby1.9

Show all related advisories


Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.








Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Do you think it's important to read Setup/User Guides for applications for use within your network?


See Results   


Most Popular Advisories

1.
OpenOffice "rtl_allocateMe mory()" Truncation Vulnerability
2.
JustSystems Ichitaro Products Unspecified Code Execution Vulnerability
3.
Red Hat Directory Server Multiple Vulnerabilities
4.
Honeyd "test.sh" Insecure Temporary Files
5.
HP-UX update for Apache
6.
Tiger "genmsgidx" Insecure Temporary Files
7.
Red Hat update for tomcat
8.
Ampache "gather-message s.sh" Insecure Temporary Files
9.
Red Hat update for adminutil
10.
Red Hat Directory Server Denial of Service Vulnerabilities





Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia