Secunia Logo  
 
Ubuntu update for noweb
Secunia Advisory: SA18967
Release Date: 2006-02-22
Popularity: 5,414 views

Critical:
Less critical
Impact: Privilege escalation
Where: Local system
Solution Status: Vendor Patch

OS:Ubuntu Linux 4.10
Ubuntu Linux 5.04
Ubuntu Linux 5.10

Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2005-3342


Description:
Ubuntu has issued an update for noweb. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges.

For more information:
SA18809

Solution:
Apply updated packages.

-- Ubuntu 4.10 --

Source archives:

http://security.ubuntu.com/ubuntu/poo.../noweb/noweb_2.10c-3ubuntu1.1.diff.gz
Size/MD5: 11262 c97d1934407598134e7da5d53b4c625a
http://security.ubuntu.com/ubuntu/pool/main/n/noweb/noweb_2.10c-3ubuntu1.1.dsc
Size/MD5: 629 a21c779c23311c40353fee565971f7dd
http://security.ubuntu.com/ubuntu/pool/main/n/noweb/noweb_2.10c.orig.tar.gz
Size/MD5: 712332 30bbacf1fb2a402410e5ad2fb600d9fc

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

http://security.ubuntu.com/ubuntu/poo...web/nowebm_2.10c-3ubuntu1.1_amd64.deb
Size/MD5: 535460 2d35850c7436ec5e1c452098ab8f2f26

i386 architecture (x86 compatible Intel/AMD)

http://security.ubuntu.com/ubuntu/poo...oweb/nowebm_2.10c-3ubuntu1.1_i386.deb
Size/MD5: 518536 7b89ab418e72de19d81aed9d1dc8aefa

powerpc architecture (Apple Macintosh G3/G4/G5)

http://security.ubuntu.com/ubuntu/poo...b/nowebm_2.10c-3ubuntu1.1_powerpc.deb
Size/MD5: 522740 f5b23a14a7600e91788a6803e1453861

-- Ubuntu 5.04 --

Source archives:

http://security.ubuntu.com/ubuntu/poo...b/noweb_2.10c-3.1ubuntu5.04.1.diff.gz
Size/MD5: 11276 d692bce20df8c6e0fb64013daf7bc9e5
http://security.ubuntu.com/ubuntu/poo...noweb/noweb_2.10c-3.1ubuntu5.04.1.dsc
Size/MD5: 639 6b6781615241f3d07db34b4ed951eab4
http://security.ubuntu.com/ubuntu/pool/main/n/noweb/noweb_2.10c.orig.tar.gz
Size/MD5: 712332 30bbacf1fb2a402410e5ad2fb600d9fc

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

http://security.ubuntu.com/ubuntu/poo...owebm_2.10c-3.1ubuntu5.04.1_amd64.deb
Size/MD5: 535570 7ed60a1bfce4de9db2b6f6ca24f7544d

i386 architecture (x86 compatible Intel/AMD)

http://security.ubuntu.com/ubuntu/poo...nowebm_2.10c-3.1ubuntu5.04.1_i386.deb
Size/MD5: 518652 973b9b6459bc21f645725f4c5013500f

powerpc architecture (Apple Macintosh G3/G4/G5)

http://security.ubuntu.com/ubuntu/poo...ebm_2.10c-3.1ubuntu5.04.1_powerpc.deb
Size/MD5: 522804 70fd183b24ea9c8d77ca8eb65172924f

-- Ubuntu 5.10 --

Source archives:

http://security.ubuntu.com/ubuntu/poo...b/noweb_2.10c-3.1ubuntu5.10.1.diff.gz
Size/MD5: 11275 8b1c3749cd3fc5f0f5bb0909d1db527c
http://security.ubuntu.com/ubuntu/poo...noweb/noweb_2.10c-3.1ubuntu5.10.1.dsc
Size/MD5: 639 3f37d4a988691727bdc9452e459ccc46
http://security.ubuntu.com/ubuntu/pool/main/n/noweb/noweb_2.10c.orig.tar.gz
Size/MD5: 712332 30bbacf1fb2a402410e5ad2fb600d9fc

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

http://security.ubuntu.com/ubuntu/poo...owebm_2.10c-3.1ubuntu5.10.1_amd64.deb
Size/MD5: 535562 8ce18eceec28b3bb1165156e17d06f10

i386 architecture (x86 compatible Intel/AMD)

http://security.ubuntu.com/ubuntu/poo...nowebm_2.10c-3.1ubuntu5.10.1_i386.deb
Size/MD5: 519066 5d22ae6879e674ba5dba97a10957e6c7

powerpc architecture (Apple Macintosh G3/G4/G5)

http://security.ubuntu.com/ubuntu/poo...ebm_2.10c-3.1ubuntu5.10.1_powerpc.deb
Size/MD5: 522756 2ea6685d6400fc111cf093f01b7a4b39

Original Advisory:
http://www.ubuntu.com/usn/usn-254-1

Other References:
SA18809:
http://secunia.com/advisories/18809/


Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. OpenSSL DSA / ECDSA "EVP_VerifyFinal()" Spoofing Vulnerability // 113 views
2. Joomla! "X_CMS_LIBRARY_PATH" Directory Traversal Vulnerability // 98 views
3. Red Hat update for openssl // 64 views
4. Symantec Mail Security for SMTP Response Handling Denial of Service // 57 views
5. Red Hat update for xterm // 56 views
6. Red Hat update for dbus // 53 views
7. SAP GUI TabOne ActiveX Control Caption List Buffer Overflow // 52 views
8. Cain & Abel Cisco IOS Configuration File Buffer Overflow // 41 views
9. vBulletin Personal Sticky Threads Add-on Security Bypass Vulnerability // 40 views
10. TSC2 Help Desk CTab ActiveX Control Caption List Buffer Overflow // 39 views