Secunia - Stay Secure
Gartner
Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
Software Inspectors
  Scan Online
  Personal (PSI)
  Network (NSI 2.0)

Solutions For
  Security Professionals
  Security Vendors

Free Solutions For
  Open Communities
  Journalists & Media

Secunia Advisories
  Search
  Historic Advisories
  Listed By Product
  Listed By Vendor
  Statistics / Graphs
  Secunia Research
  Report Vulnerability
  About Advisories

Virus Information
  Chronological List
  Last 10 Virus Alerts
  About Virus Information

Secunia Customers
  Customer Area


Trustix Updates for Multiple Packages Advisory Available in Danish  Advisory Available in German 

Secunia Advisory: SA25255  
Release Date: 2007-05-17

Critical:
Highly critical
Impact: Unknown
Security Bypass
Manipulation of data
Brute force
Exposure of system information
Exposure of sensitive information
Privilege escalation
DoS
System access
Where: From remote
Solution Status: Vendor Patch

OS:Trustix Secure Linux 2.2


CVE reference:CVE-2007-1864 (Secunia mirror)
CVE-2007-1995 (Secunia mirror)
CVE-2007-2027 (Secunia mirror)
CVE-2007-2438 (Secunia mirror)
CVE-2007-2444 (Secunia mirror)
CVE-2007-2446 (Secunia mirror)
CVE-2007-2447 (Secunia mirror)
CVE-2007-2509 (Secunia mirror)
CVE-2007-2510 (Secunia mirror)
CVE-2007-2511 (Secunia mirror)
CVE-2007-2583 (Secunia mirror)
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS!


Description:
Trustix has issued updates for multiple packages. These fix some vulnerabilities where some have unknown impact and others can be exploited by malicious, local users to gain escalated privileges, by malicious users to perform actions with escalated privileges, manipulate certain data, disclose potentially sensitive information, bypass certain security restrictions, to cause a DoS (Denial of Service) and to compromise a vulnerable system, and by malicious people to compromise a vulnerable system.

For more information:
SA24808
SA25024
SA25123
SA25169
SA25188
SA25232

Solution:
Apply updated packages.

-- Trustix Secure Linux 2.2 --

ae50fa217465dfb435b86585985b37e8 2.2/rpms/php-5.2.2-1tr.i586.rpm
1f9106a6089ee5068d85d8a30c48d013 2.2/rpms/php-cli-5.2.2-1tr.i586.rpm
fc4f59f8970a39ca44e24faf0d8f5a07 2.2/rpms/php-curl-5.2.2-1tr.i586.rpm
023cbf263764bdedbe281425a073b89b 2.2/rpms/php-devel-5.2.2-1tr.i586.rpm
6bfd95f4a36cb511da5ed7645ba7fdda 2.2/rpms/php-exif-5.2.2-1tr.i586.rpm
755ae81ea9efa21e61fcf5e31bda8de9 2.2/rpms/php-fcgi-5.2.2-1tr.i586.rpm
8cf87c1b3bae9982618c6cb856a9d060 2.2/rpms/php-gd-5.2.2-1tr.i586.rpm
1b64eb185b3f2d06f1bf83846d8a1b21 2.2/rpms/php-imap-5.2.2-1tr.i586.rpm
e46c85591898876b70f841ee64087f5e 2.2/rpms/php-ldap-5.2.2-1tr.i586.rpm
939c8d09f61334f8767789a8ca7ee80b 2.2/rpms/php-mcrypt-5.2.2-1tr.i586.rpm
6563e93e65f5b50d2bfcefad9ec6cd2e 2.2/rpms/php-mhash-5.2.2-1tr.i586.rpm
9849874590f7cb5dfa86c78b4047ece1 2.2/rpms/php-mssql-5.2.2-1tr.i586.rpm
095186b85c2110125f35aa73ea05052c 2.2/rpms/php-mysql-5.2.2-1tr.i586.rpm
ba17f4c61f759adf384f8f70ebb276e5 2.2/rpms/php-mysqli-5.2.2-1tr.i586.rpm
edf2c26ad9bc4e9ccc13f0b331b7a654 2.2/rpms/php-openssl-5.2.2-1tr.i586.rpm
065ff3929f4bd3d0d13e0f7b14962410 2.2/rpms/php-pdo-mysql-5.2.2-1tr.i586.rpm
7ded129275416a1eb28c9ed9a07c4c21 2.2/rpms/php-pdo-sqlite-5.2.2-1tr.i586.rpm
52e5622194837e9d2d7694fe665c5c88 2.2/rpms/php-pgsql-5.2.2-1tr.i586.rpm
77d08a35f51fe6b2709e9d9b8683b0e7 2.2/rpms/php-sqlite-5.2.2-1tr.i586.rpm
df0eb0f7c243031f3b1dfb68043cac81 2.2/rpms/php-zlib-5.2.2-1tr.i586.rpm
89c6d6557d58e17d418a1d8badb82fca 2.2/rpms/php4-4.4.7-1tr.i586.rpm
19820fc100715f0cdfea9fa768419335 2.2/rpms/php4-cli-4.4.7-1tr.i586.rpm
afa803428461b868654ac0a2375bd2d6 2.2/rpms/php4-curl-4.4.7-1tr.i586.rpm
c9b556f951920cf39e7a37f47bc4f755 2.2/rpms/php4-devel-4.4.7-1tr.i586.rpm
942bcba9ead9a44143d4fd85029a804c 2.2/rpms/php4-domxml-4.4.7-1tr.i586.rpm
7d2db195fa8d16b41f845d99e3d73760 2.2/rpms/php4-exif-4.4.7-1tr.i586.rpm
dcb910f93592809d20f6d34889a1e2b7 2.2/rpms/php4-fcgi-4.4.7-1tr.i586.rpm
8d3a1b4ba59ef360f5c45011e40ab17c 2.2/rpms/php4-gd-4.4.7-1tr.i586.rpm
446f140be507fec5d80cd99ae81af507 2.2/rpms/php4-imap-4.4.7-1tr.i586.rpm
e31e89864144eac9c892946fc9fd8ea2 2.2/rpms/php4-ldap-4.4.7-1tr.i586.rpm
7b35528dd9be575dc4811081e492d0aa 2.2/rpms/php4-mhash-4.4.7-1tr.i586.rpm
e6c278d4670045974760af6b51ba89d2 2.2/rpms/php4-mysql-4.4.7-1tr.i586.rpm
2ddfd7b33b8804abe4b0f499323963c6 2.2/rpms/php4-pgsql-4.4.7-1tr.i586.rpm
61fee2073c34cc690bd56ca4642b9334 2.2/rpms/php4-test-4.4.7-1tr.i586.rpm
0c4ce893c30ae7e9e8a1e9042148df46 2.2/rpms/samba-3.0.24-2tr.i586.rpm
ba9ffbaadf973bedf5dbd77783a61351 2.2/rpms/samba-client-3.0.24-2tr.i586.rpm
6534c5a93bceb0e8b88577000a62295e 2.2/rpms/samba-common-3.0.24-2tr.i586.rpm
4b77614bf3eee277ec8cce57b61cafac 2.2/rpms/samba-devel-3.0.24-2tr.i586.rpm
85662a9eb1858a623f51ed2a76497001 2.2/rpms/samba-mysql-3.0.24-2tr.i586.rpm

Original Advisory:
http://www.trustix.org/errata/2007/0017/

Other References:
SA24808:
http://secunia.com/advisories/24808/

SA25024:
http://secunia.com/advisories/25024/

SA25123:
http://secunia.com/advisories/25123/

SA25169:
http://secunia.com/advisories/25169/

SA25188:
http://secunia.com/advisories/25188/

SA25232:
http://secunia.com/advisories/25232/


Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

78 Related Secunia Security Advisories, displaying 10

1. Trustix Update for Multiple Packages
2. Trustix Update for Multiple Packages
3. Trustix Update for Multiple Packages
4. Trustix update for kerberos5
5. Trustix update for clamav
6. Trustix Updates for Multiple Packages
7. Trustix update for postgresql
8. Trustix update for freetype and clamav
9. Trustix Updates for Multiple Packages
10. Trustix update for php4

Show all related advisories


Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.








Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Do you think it's important to read Setup/User Guides for applications for use within your network?


See Results   


Most Popular Advisories

1.
OpenBSD BIND Query Port DNS Cache Poisoning
2.
Drupal Session Fixation Vulnerability
3.
Debian update for clamav
4.
Apple Safari Cross-Domain Cookie Injection Vulnerability
5.
Linux Kernel LDT Buffer Size Handling Vulnerability
6.
Debian update for xulrunner
7.
IPCop update for perl
8.
Red Hat update for thunderbird
9.
Microsoft Word Unspecified Code Execution Vulnerability
10.
dnsmasq Denial of Service and DNS Cache Poisoning





Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia