[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[debian-users:31424] [Translate] [SECURITY] [DSA-103-1] glibc buffer overflow

From: Seiji Kaneko <skaneko@xxxxxxxxxxxx>
Subject: [debian-users:31424] [Translate] [SECURITY] [DSA-103-1] glibc buffer overflow
Date: Mon, 14 Jan 2002 12:47:06 +0900
X-ml-info: If you have a question, send e-mail with the body "help" (without quotes) to the address debian-users-ctl@debian.or.jp; help=<mailto:debian-users-ctl@debian.or.jp?body=help>
X-ml-name: debian-users
X-mlserver: fml [fml 3.0pl#17]; post only (only members can post)
Message-id: <p04320406b86804f25475@xxxxxxxxxxxxxxxxx>
X-mail-count: 31424
X-mailer: Macintosh Eudora Version 4.3.2-J
かねこです。
URL 等は元記事を確認ください。

＃ typo はあるし、103 だし、ぶつぶつ。

------>8------------>8------------>8------------>8------------>8
- ------------------------------------------------------------------------
Debian Security Advisory DSA-103-1                   security@debian.org
http://www.debian.org/security/                         Wichert Akkerman
January 13, 2002
- ------------------------------------------------------------------------


Package        : glibc
Problem type   : バッファオーバフロー
Debian-specific: no

バッファオーバフローが glibc の globbing コードで発見されました。
このコードはファイル名補完パターンを処理するために使われるもので、
シェルや ftp サーバなどのアプリケーションで広く使われています。

これはバージョン 2.1.3-20 で修正されており、直ぐに libc パッケージ
をアップグレードすることを推奨します。


wget url
	でファイルを取得できます。
dpkg -i file.deb
        で参照されたファイルをインストールできます。


Debian GNU/Linux 2.2 alias potato
- ---------------------------------

  Potato は alpha, arm, i386, m68k, powerpc と sparc の各アーキテクチ
 ャ向けにリリースされています。

  Source archives:
    http://security.debian.org/dists/stable/updates/main/source/glibc_2.1.3-20.diff.gz
      MD5 checksum: e5cf2d13e53ca90a934def7142349d1b
    http://security.debian.org/dists/stable/updates/main/source/glibc_2.1.3-20.dsc
      MD5 checksum: dd43f4c504f34c31a5455697d5d3495e
    http://security.debian.org/dists/stable/updates/main/source/glibc_2.1.3.orig.tar.gz
      MD5 checksum: aea1bb5c28f793013153d1b8f91eb746

  Architecture independent archives:
    http://security.debian.org/dists/stable/updates/main/binary-all/glibc-doc_2.1.3-20_all.deb
      MD5 checksum: 53f5d098af3f144227f0a6e758229b65
    http://security.debian.org/dists/stable/updates/main/binary-all/i18ndata_2.1.3-20_all.deb
      MD5 checksum: 1a5478744de731a27f58b4db2d320b1e

  Alpha architecture:
    http://security.debian.org/dists/stable/updates/main/binary-alpha/libc6.1-dbg_2.1.3-20_alpha.deb
      MD5 checksum: a10226ad449803f940a9d7544f903fca
    http://security.debian.org/dists/stable/updates/main/binary-alpha/libc6.1-dev_2.1.3-20_alpha.deb
      MD5 checksum: c2cd900e2c53bea835861be1349e3a0e
    http://security.debian.org/dists/stable/updates/main/binary-alpha/libc6.1-pic_2.1.3-20_alpha.deb
      MD5 checksum: 07a2f8fc44aaa32de33016be8dc63392
    http://security.debian.org/dists/stable/updates/main/binary-alpha/libc6.1-prof_2.1.3-20_alpha.deb
      MD5 checksum: 85a680fc1c1b138bd8118c3fc06ed3f1
    http://security.debian.org/dists/stable/updates/main/binary-alpha/libc6.1_2.1.3-20_alpha.deb
      MD5 checksum: 514ad794cfeba50cdb619bdaa6b5b930
    http://security.debian.org/dists/stable/updates/main/binary-alpha/libnss1-compat_2.1.3-20_alpha.deb
      MD5 checksum: ea5a7b81db9efc6c75360e85a3df7493
    http://security.debian.org/dists/stable/updates/main/binary-alpha/locales_2.1.3-20_alpha.deb
      MD5 checksum: 941e9a0ceed4b9d057407413d899721c
    http://security.debian.org/dists/stable/updates/main/binary-alpha/nscd_2.1.3-20_alpha.deb
      MD5 checksum: 607561e25060cc583b7c6dfe0188be30

  ARM architecture:
    http://security.debian.org/dists/stable/updates/main/binary-arm/libc6-dbg_2.1.3-20_arm.deb
      MD5 checksum: 642853bb3eb5b452e6dc5dbef9ae936a
    http://security.debian.org/dists/stable/updates/main/binary-arm/libc6-dev_2.1.3-20_arm.deb
      MD5 checksum: 15fb874f39fce495a8a4baa54b562593
    http://security.debian.org/dists/stable/updates/main/binary-arm/libc6-pic_2.1.3-20_arm.deb
      MD5 checksum: 88480385280b03467e0f3f0eef28d40b
    http://security.debian.org/dists/stable/updates/main/binary-arm/libc6-prof_2.1.3-20_arm.deb
      MD5 checksum: 7e0f9e9d02ecde3e4753dcf5a7e3e383
    http://security.debian.org/dists/stable/updates/main/binary-arm/libc6_2.1.3-20_arm.deb
      MD5 checksum: e30b48e02f757bde5bed964d78b348ff
    http://security.debian.org/dists/stable/updates/main/binary-arm/locales_2.1.3-20_arm.deb
      MD5 checksum: a928483482e783dd4b647646476c9d85
    http://security.debian.org/dists/stable/updates/main/binary-arm/nscd_2.1.3-20_arm.deb
      MD5 checksum: f05373d70f7be67ee5e7bcdaa4234c70

  Intel IA-32 architecture:
    http://security.debian.org/dists/stable/updates/main/binary-i386/libc6-dbg_2.1.3-20_i386.deb
      MD5 checksum: 86fd1fc6d698d5099415d641e4775be6
    http://security.debian.org/dists/stable/updates/main/binary-i386/libc6-dev_2.1.3-20_i386.deb
      MD5 checksum: f470ae87d6c06b84c40cf9411c7b93e6
    http://security.debian.org/dists/stable/updates/main/binary-i386/libc6-pic_2.1.3-20_i386.deb
      MD5 checksum: b60ed963cfe44887fd7fa246f3da7e6e
    http://security.debian.org/dists/stable/updates/main/binary-i386/libc6-prof_2.1.3-20_i386.deb
      MD5 checksum: f191c9b6819d500ee94c91b83201e57e
    http://security.debian.org/dists/stable/updates/main/binary-i386/libc6_2.1.3-20_i386.deb
      MD5 checksum: f607e0c2ce9790708ee5aca3cc46d198
    http://security.debian.org/dists/stable/updates/main/binary-i386/libnss1-compat_2.1.3-20_i386.deb
      MD5 checksum: 6b24f74107b07bbe9540aa243d835ebc
    http://security.debian.org/dists/stable/updates/main/binary-i386/locales_2.1.3-20_i386.deb
      MD5 checksum: 59661ee8386feb517759f149a58c30f7
    http://security.debian.org/dists/stable/updates/main/binary-i386/nscd_2.1.3-20_i386.deb
      MD5 checksum: faea816f34669a9f8a555931651e9742

  Motorola 680x0 architecture:
    http://security.debian.org/dists/stable/updates/main/binary-m68k/libc6-dbg_2.1.3-20_m68k.deb
      MD5 checksum: 8b9e64b50a98a2d1f0a17611b581ed26
    http://security.debian.org/dists/stable/updates/main/binary-m68k/libc6-dev_2.1.3-20_m68k.deb
      MD5 checksum: 372971cc52f6324a3f60d36db666bce3
    http://security.debian.org/dists/stable/updates/main/binary-m68k/libc6-pic_2.1.3-20_m68k.deb
      MD5 checksum: b6679392bb317b929eec6003a374a175
    http://security.debian.org/dists/stable/updates/main/binary-m68k/libc6-prof_2.1.3-20_m68k.deb
      MD5 checksum: b8df6ac9e9f0c5bd449ce414c8934ed3
    http://security.debian.org/dists/stable/updates/main/binary-m68k/libc6_2.1.3-20_m68k.deb
      MD5 checksum: 5422999b45eb2ecd3d73d31c2e31babf
    http://security.debian.org/dists/stable/updates/main/binary-m68k/libnss1-compat_2.1.3-20_m68k.deb
      MD5 checksum: c41e1746555df48ff74b4f9a10d99efa
    http://security.debian.org/dists/stable/updates/main/binary-m68k/locales_2.1.3-20_m68k.deb
      MD5 checksum: ba7e568da8b2c66582411053dd261bae
    http://security.debian.org/dists/stable/updates/main/binary-m68k/nscd_2.1.3-20_m68k.deb
      MD5 checksum: e8d291a8a0dfb077c442855b4abfbf46

  PowerPC architecture:
    http://security.debian.org/dists/stable/updates/main/binary-powerpc/libc6-dbg_2.1.3-20_powerpc.deb
      MD5 checksum: 8b056db53804c863593e0a366c1a01b7
    http://security.debian.org/dists/stable/updates/main/binary-powerpc/libc6-dev_2.1.3-20_powerpc.deb
      MD5 checksum: 42e3056898de2108b17bc467b1a779ca
    http://security.debian.org/dists/stable/updates/main/binary-powerpc/libc6-pic_2.1.3-20_powerpc.deb
      MD5 checksum: 36c885eec757bcdf1891739b1f848dc3
    http://security.debian.org/dists/stable/updates/main/binary-powerpc/libc6-prof_2.1.3-20_powerpc.deb
      MD5 checksum: 62d81ad57c03118d4adf67e0fe7a22dc
    http://security.debian.org/dists/stable/updates/main/binary-powerpc/libc6_2.1.3-20_powerpc.deb
      MD5 checksum: 876c42ffe5841d3f5de423d9acd53c0c
    http://security.debian.org/dists/stable/updates/main/binary-powerpc/locales_2.1.3-20_powerpc.deb
      MD5 checksum: 0ede1dd10dbd02a3679cd029b174490a
    http://security.debian.org/dists/stable/updates/main/binary-powerpc/nscd_2.1.3-20_powerpc.deb
      MD5 checksum: 204ceabf6e29a32d03e795b28702f0a4

  Sun Sparc architecture:
    http://security.debian.org/dists/stable/updates/main/binary-sparc/libc6-dbg_2.1.3-20_sparc.deb
      MD5 checksum: 382df530c655d7f39b30219f03cfa67b
    http://security.debian.org/dists/stable/updates/main/binary-sparc/libc6-dev_2.1.3-20_sparc.deb
      MD5 checksum: 49d0ff9f4c939c867d3f8c9d04ce97f1
    http://security.debian.org/dists/stable/updates/main/binary-sparc/libc6-pic_2.1.3-20_sparc.deb
      MD5 checksum: 264dfb61bd58865945e2209e20357c89
    http://security.debian.org/dists/stable/updates/main/binary-sparc/libc6-prof_2.1.3-20_sparc.deb
      MD5 checksum: 9782e8edc88899c5d9c1d1f70b0f0aba
    http://security.debian.org/dists/stable/updates/main/binary-sparc/libc6_2.1.3-20_sparc.deb
      MD5 checksum: 646ae0abd35db40b6d025a08035064d3
    http://security.debian.org/dists/stable/updates/main/binary-sparc/locales_2.1.3-20_sparc.deb
      MD5 checksum: 306859c780f6a03a836ef0a2f099b3fa
    http://security.debian.org/dists/stable/updates/main/binary-sparc/nscd_2.1.3-20_sparc.deb
      MD5 checksum: 331c887198884d51bd5c88b8eb4c94ef

これらのファイルは次の版の安定版リリース時そちらに移されます。

未リリースのアーキテクチャについては、以下の適切なディレクトリを参照ください
 ftp://ftp.debian.org/debian/dists/sid/binary-$arch/

- -- 
- ----------------------------------------------------------------------------
apt-get: deb http://security.debian.org/ stable/updates main
dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org

------>8------------>8------------>8------------>8------------>8
-- 
Seiji Kaneko                         skaneko@xxxxxxxxxxxx
---------------------------------------------------------
Prev by Date: [debian-users:31423] nautilus で日本語の表示が ??? になる。
Next by Date: [debian-users:31425] apt-setup が起動しない
Previous by thread: [debian-users:31440] Re: nautilus で日本語の表示が ??? になる。
Next by thread: [debian-users:31425] apt-setup が起動しない
Index(es):
- Date
- Thread