Debian update for id3lib3.8.3 - Secunia Advisories - Vulnerability Intelligence

Debian update for id3lib3.8.3
Secunia Advisory:	SA26646	Advisory Toolbox: Issue ticket Save in to-do list Mark as handled Exploit information Download as PDF Review actions Add comment
Release Date:	2007-09-03
Last Update:	2007-10-02
Popularity:	4,236 views

Critical:	Less critical
Impact:	Privilege escalation
Where:	Local system
Solution Status:	Vendor Patch

OS:	Debian GNU/Linux 3.1 Debian GNU/Linux 4.0 Debian GNU/Linux unstable alias sid

Subscribe:	Instant alerts on relevant vulnerabilities

CVE reference:	CVE-2007-4460

Description: Debian has issued an update for id3lib3.8.3. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges. For more information: SA26536 Solution: Apply updated packages. -- Debian GNU/Linux 3.1 alias sarge -- Source archives: http://security.debian.org/pool/updat...3.8.3/id3lib3.8.3_3.8.3-4.1sarge1.dsc Size/MD5 checksum:655 94eda5191994c0dbe0146a85a9e94737 http://security.debian.org/pool/updat...3/id3lib3.8.3_3.8.3-4.1sarge1.diff.gz Size/MD5 checksum: 134382 b45300bc3341dbedf90f4c593462794f http://security.debian.org/pool/updat...ib3.8.3/id3lib3.8.3_3.8.3.orig.tar.gz Size/MD5 checksum: 950726 19f27ddd2dda4b2d26a559a4f0f402a7 Alpha architecture: http://security.debian.org/pool/updat...ibid3-3.8.3_3.8.3-4.1sarge1_alpha.deb Size/MD5 checksum: 200738 a089ad12c4ddd30a4f6fdb340b3c9c26 http://security.debian.org/pool/updat...3-3.8.3-dev_3.8.3-4.1sarge1_alpha.deb Size/MD5 checksum: 358668 6a3178d16f20a2a4228133a0f692d197 AMD64 architecture: http://security.debian.org/pool/updat...ibid3-3.8.3_3.8.3-4.1sarge1_amd64.deb Size/MD5 checksum: 190378 90cfc4e6ab66afc0618946eda78ce66d http://security.debian.org/pool/updat...3-3.8.3-dev_3.8.3-4.1sarge1_amd64.deb Size/MD5 checksum: 295174 79e8d0882c54ffceabff4b4b527317cb ARM architecture: http://security.debian.org/pool/updat.../libid3-3.8.3_3.8.3-4.1sarge1_arm.deb Size/MD5 checksum: 204106 ae12d537affbc35f82517dbba061b332 http://security.debian.org/pool/updat...id3-3.8.3-dev_3.8.3-4.1sarge1_arm.deb Size/MD5 checksum: 322872 607fdb462573a9d022338c5f011363e0 HP Precision architecture: http://security.debian.org/pool/updat...libid3-3.8.3_3.8.3-4.1sarge1_hppa.deb Size/MD5 checksum: 213312 5279c3416cd3d0c301439a8de2b70ee7 http://security.debian.org/pool/updat...d3-3.8.3-dev_3.8.3-4.1sarge1_hppa.deb Size/MD5 checksum: 349392 28751fdfecf730380b111537646cac03 Intel IA-32 architecture: http://security.debian.org/pool/updat...libid3-3.8.3_3.8.3-4.1sarge1_i386.deb Size/MD5 checksum: 180852 10afd005f77c934946d1bcaf04998d92 http://security.debian.org/pool/updat...d3-3.8.3-dev_3.8.3-4.1sarge1_i386.deb Size/MD5 checksum: 258526 3bb1cb543f6b2ab1a4985dfa536dd3e5 Intel IA-64 architecture: http://security.debian.org/pool/updat...libid3-3.8.3_3.8.3-4.1sarge1_ia64.deb Size/MD5 checksum: 214970 eb496451fad3c40a54f55dd55ff0e4d9 http://security.debian.org/pool/updat...d3-3.8.3-dev_3.8.3-4.1sarge1_ia64.deb Size/MD5 checksum: 371532 2a339fa9b2d875dccf416dc648b5d11a Motorola 680x0 architecture: http://security.debian.org/pool/updat...libid3-3.8.3_3.8.3-4.1sarge1_m68k.deb Size/MD5 checksum: 190796 9d8b6bb6f224470ea1ac92d92015ad95 http://security.debian.org/pool/updat...d3-3.8.3-dev_3.8.3-4.1sarge1_m68k.deb Size/MD5 checksum: 263074 a5747d036e6df6f1170e8c2607cb632d Big endian MIPS architecture: http://security.debian.org/pool/updat...libid3-3.8.3_3.8.3-4.1sarge1_mips.deb Size/MD5 checksum: 197400 144d3525c130676898f379e6ab26c804 http://security.debian.org/pool/updat...d3-3.8.3-dev_3.8.3-4.1sarge1_mips.deb Size/MD5 checksum: 317716 31cde74a7a1328f63ce17907c539791a Little endian MIPS architecture: http://security.debian.org/pool/updat...bid3-3.8.3_3.8.3-4.1sarge1_mipsel.deb Size/MD5 checksum: 186678 2f8a8cdbf9a89b49fb43164b248d9196 http://security.debian.org/pool/updat...-3.8.3-dev_3.8.3-4.1sarge1_mipsel.deb Size/MD5 checksum: 315966 eb8fd5f5e78b9a0537dca9b5eb5d0f27 PowerPC architecture: http://security.debian.org/pool/updat...id3-3.8.3_3.8.3-4.1sarge1_powerpc.deb Size/MD5 checksum: 189040 0eb109d6c6864a912de8396b2fb7be31 http://security.debian.org/pool/updat...3.8.3-dev_3.8.3-4.1sarge1_powerpc.deb Size/MD5 checksum: 296638 4c113a84cfe17cc506043e26e6b6f094 IBM S/390 architecture: http://security.debian.org/pool/updat...libid3-3.8.3_3.8.3-4.1sarge1_s390.deb Size/MD5 checksum: 192592 d897e59ae0f1fe48a5e64bdb8c006416 http://security.debian.org/pool/updat...d3-3.8.3-dev_3.8.3-4.1sarge1_s390.deb Size/MD5 checksum: 313664 84727122d6fae1d78f35ecdd3f2beefe Sun Sparc architecture: http://security.debian.org/pool/updat...ibid3-3.8.3_3.8.3-4.1sarge1_sparc.deb Size/MD5 checksum: 184716 52c13bfcb58b41b2ce0456c046194bf4 http://security.debian.org/pool/updat...3-3.8.3-dev_3.8.3-4.1sarge1_sparc.deb Size/MD5 checksum: 279552 edc8e1d5d6f4f7d7beac85e81b29cdd3 -- Debian GNU/Linux 4.0 alias etch -- Source archives: http://security.debian.org/pool/updat...lib3.8.3/id3lib3.8.3_3.8.3-6etch1.dsc Size/MD5 checksum: 652 ada1a9d686cbfe925a34b2173227b47e http://security.debian.org/pool/updat....8.3/id3lib3.8.3_3.8.3-6etch1.diff.gz Size/MD5 checksum: 135226 495cb5f4610853f02a740e9b7c1a71c5 http://security.debian.org/pool/updat...ib3.8.3/id3lib3.8.3_3.8.3.orig.tar.gz Size/MD5 checksum: 950726 19f27ddd2dda4b2d26a559a4f0f402a7 Alpha architecture: http://security.debian.org/pool/updat...bid3-3.8.3-dev_3.8.3-6etch1_alpha.deb Size/MD5 checksum: 341286 c074664c96375662596d490ce9e59e2f http://security.debian.org/pool/updat...ibid3-3.8.3c2a_3.8.3-6etch1_alpha.deb Size/MD5 checksum: 187286 a6cb95da944dfe5e1a28cbf5136f3b6f AMD64 architecture: http://security.debian.org/pool/updat...bid3-3.8.3-dev_3.8.3-6etch1_amd64.deb Size/MD5 checksum: 283136 6fe99daa8aab3fd9549ab7d2db11aedc http://security.debian.org/pool/updat...ibid3-3.8.3c2a_3.8.3-6etch1_amd64.deb Size/MD5 checksum: 176214 e35c8545fe42ae16362144e23772735a ARM architecture: http://security.debian.org/pool/updat...libid3-3.8.3-dev_3.8.3-6etch1_arm.deb Size/MD5 checksum: 277156 4f1e8102266eb7fe3f42dd613274c02a http://security.debian.org/pool/updat.../libid3-3.8.3c2a_3.8.3-6etch1_arm.deb Size/MD5 checksum: 179072 fa3c352ad012326b3753fa1b7b189eaf HP Precision architecture: http://security.debian.org/pool/updat...ibid3-3.8.3-dev_3.8.3-6etch1_hppa.deb Size/MD5 checksum: 305654 f9d69c8cdb5585e5b1dc3a9742b5edce http://security.debian.org/pool/updat...libid3-3.8.3c2a_3.8.3-6etch1_hppa.deb Size/MD5 checksum: 196342 fa9087816b58d9ed207e25401906c64a Intel IA-32 architecture: http://security.debian.org/pool/updat...ibid3-3.8.3-dev_3.8.3-6etch1_i386.deb Size/MD5 checksum: 263064 6b7e0823707843fa76158a0e1ba7f42f http://security.debian.org/pool/updat...libid3-3.8.3c2a_3.8.3-6etch1_i386.deb Size/MD5 checksum: 176662 05ca5942a44486b658a44e4bee16154d Intel IA-64 architecture: http://security.debian.org/pool/updat...ibid3-3.8.3-dev_3.8.3-6etch1_ia64.deb Size/MD5 checksum: 351960 6fd56a95a8aa66fa890a99a3264a7cbd http://security.debian.org/pool/updat...libid3-3.8.3c2a_3.8.3-6etch1_ia64.deb Size/MD5 checksum: 202690 e1c25a15ff7a480cafd1ac5d95ea0083 Big endian MIPS architecture: http://security.debian.org/pool/updat...ibid3-3.8.3-dev_3.8.3-6etch1_mips.deb Size/MD5 checksum: 285984 576083197b0d3778f9963ff697f0dd6f http://security.debian.org/pool/updat...libid3-3.8.3c2a_3.8.3-6etch1_mips.deb Size/MD5 checksum: 173660 221f900fe4f7bb66fc1cfdae380844c5 Little endian MIPS architecture: http://security.debian.org/pool/updat...id3-3.8.3-dev_3.8.3-6etch1_mipsel.deb Size/MD5 checksum: 285784 ac22324cd11eeb23ee2dd17c52b18401 http://security.debian.org/pool/updat...bid3-3.8.3c2a_3.8.3-6etch1_mipsel.deb Size/MD5 checksum: 172404 ff862958eca1c3257d843a956dd64d2c PowerPC architecture: http://security.debian.org/pool/updat...d3-3.8.3-dev_3.8.3-6etch1_powerpc.deb Size/MD5 checksum: 283208 8d6f0c3417ba62980ff80c5084ba0cad http://security.debian.org/pool/updat...id3-3.8.3c2a_3.8.3-6etch1_powerpc.deb Size/MD5 checksum: 176614 89b9c136ae81ebd9918420d7d6915c28 IBM S/390 architecture: http://security.debian.org/pool/updat...ibid3-3.8.3-dev_3.8.3-6etch1_s390.deb Size/MD5 checksum: 269674 d8dd6f6d7d76a46063c0723f974198da http://security.debian.org/pool/updat...libid3-3.8.3c2a_3.8.3-6etch1_s390.deb Size/MD5 checksum: 177402 028a696232d95ddf67ae6acb7a3aac9c Sun Sparc architecture: http://security.debian.org/pool/updat...bid3-3.8.3-dev_3.8.3-6etch1_sparc.deb Size/MD5 checksum: 251852 2356b2546559f20403987530357a68fc http://security.debian.org/pool/updat...ibid3-3.8.3c2a_3.8.3-6etch1_sparc.deb Size/MD5 checksum: 176600 80690cceeeb56b25d0cd30381ee28ad4 -- Debian GNU/Linux unstable alias sid -- Fixed in version 3.8.3-7. Changelog: 2007-09-10: Updated "Solution" section with information about the packages for Debian 4.0 alias etch. 2007-10-02: Updated "Solution" section with Debian 4.0 alias etch packages for the little endian MIPS architecture. Original Advisory: http://www.debian.org/security/2007/dsa-1365 Other References: SA26536: http://secunia.com/advisories/26536

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released. Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Latest Advisories

4th Dec, 2008

New advisories:	20
New vulnerabilities:	45
Updated advisories:	31

Not // 433 views

Linux Kernel PARISC "parisc_show_stack() " Denial of Service

Not // 368 views

IBM HMC HTTP TRACE Response Cross-Site Scripting Weakness

Moderately // 471 views

PHP ZipArchive::extractT o() Directory Traversal Vulnerability

Moderately // 360 views

RSyslog "AllowedSender" Security Bypass Vulnerability

Moderately // 454 views

Nagios Unspecified CGI Vulnerability

Highly // 378 views

RadAsm ".rap" Processing Buffer Overflow Vulnerability

Highly // 369 views

Multi SEO phpBB "pfad" File Inclusion Vulnerability

Moderately // 373 views

PowerDNS CH HINFO Denial of Service Vulnerability

Less // 378 views

Drupal Storm Module SQL Injection Vulnerabilities

Moderately // 367 views

Check Up System for Thai Healthcare "search" SQL Injection

Solutions | More...

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.