受影响系统:
Martin F. Krafft pmount < 0.9.23
不受影响系统:
Martin F. Krafft pmount 0.9.23
描述:
pmount允许普通用户加载没有匹配/etc/fstab项的可移动设备。
pmount的policy.c文件中的make_lockdir_name函数创建了不安全的锁定文件,本地用户可以通过对/var/lock/中的文件执行符号链接攻击覆盖任意文件。
<*来源:Dan Rosenberg
链接:http://secunia.com/advisories/40231/
http://www.debian.org/security/2010/dsa-2063
*>
建议:
厂商补丁:
Debian
——
Debian已经为此发布了一个安全公告(DSA-2063-1)以及相应补丁:
DSA-2063-1:New pmount packages fix denial of service
链接:http://www.debian.org/security/2010/dsa-2063
补丁下载:
Source archives:
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18.orig.tar.gz
Size/MD5 checksum: 436009 d04973bde34edac7dd2e50bfe8f10700
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1.dsc
Size/MD5 checksum: 1202 d2a121965c3af232694c8df63821d713
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1.diff.gz
Size/MD5 checksum: 8778 96ad2faddf78f80b104a4b9d883507d5
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1_alpha.deb
Size/MD5 checksum: 119610 b8734d5a360b76e0c8dc7e7d97ee2f9d
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1_amd64.deb
Size/MD5 checksum: 117680 5ef3870410e876fbc7bdd0e092f08eef
arm architecture (ARM)
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1_arm.deb
Size/MD5 checksum: 100718 b04cb703b30df4605d9d121ee2c89c16
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1_armel.deb
Size/MD5 checksum: 101628 1ecb1c7cc49eda6d31de2165327dac99
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1_hppa.deb
Size/MD5 checksum: 113350 189516bd992b63efaa489067cc9f6449
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1_i386.deb
Size/MD5 checksum: 102034 5070f1a0a8a9d617c710bc2820bf65e9
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1_ia64.deb
Size/MD5 checksum: 133204 747d5be1ca278b8bac08522d72282923
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1_mips.deb
Size/MD5 checksum: 114712 661bf288a4790a6c99f826a9d23ed584
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1_mipsel.deb
Size/MD5 checksum: 115204 e5fc95107322fa23317ac413b9d0dac5
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1_powerpc.deb
Size/MD5 checksum: 124538 684de19e8f8df5ae941849b1b0298e33
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1_s390.deb
Size/MD5 checksum: 116318 a80c45d4dbd5a7fb666f4926e5deac59
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/p/pmount/pmount_0.9.18-2+lenny1_sparc.deb
Size/MD5 checksum: 102488 96c8d0f14087b1036c70bd500da2b032
补丁安装方法:
1. 手工安装补丁包:
首先,使用下面的命令来下载补丁软件:
# wget url (url是补丁下载链接地址)
然后,使用下面的命令来安装补丁:
# dpkg -i file.deb (file是相应的补丁名)
2. 使用apt-get自动安装补丁包:
首先,使用下面的命令更新内部数据库:
# apt-get update
然后,使用下面的命令安装更新软件包:
# apt-get upgrade
Martin F. Krafft
—————-
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
https://alioth.debian.org/frs/shownotes.php?group_id=31157&release_id=1525
0 条评论。