CAN-2005-2494: Insecure lockfile handling permits potential local root privilege escalation

Bug #21112 reported by Debian Bug Importer
6
Affects Status Importance Assigned to Milestone
kdebase (Debian)
Fix Released
Unknown
kdebase (Ubuntu)
Fix Released
High
Unassigned

Bug Description

Automatically imported from Debian bug report #327039 http://bugs.debian.org/327039

CVE References

Revision history for this message
In , Isaac Clerencia (isaaccp) wrote : Re: Bug#327039: CAN-2005-2494: Insecure lockfile handling permits potential local root privilege escalation

On Wednesday, 7 September 2005 10:23, Moritz Muehlenhoff wrote:
> Package: kdebase-bin
> Version: 3.4.2-2
> Severity: grave
> Tags: security
> Justification: user security hole
>
> Please see http://www.kde.org/info/security/advisory-20050905-1.txt for
> details and a patch.
The patch is already applied in our SVN and will be uploaded soon.

Best regards

--
Isaac Clerencia at Warp Networks, http://www.warp.es
Work: <email address hidden> | Debian: <email address hidden>

Revision history for this message
Debian Bug Importer (debzilla) wrote :

Automatically imported from Debian bug report #327039 http://bugs.debian.org/327039

Revision history for this message
Debian Bug Importer (debzilla) wrote :

Message-Id: <email address hidden>
Date: Wed, 07 Sep 2005 10:23:54 +0200
From: Moritz Muehlenhoff <email address hidden>
To: Debian Bug Tracking System <email address hidden>
Subject: CAN-2005-2494: Insecure lockfile handling permits potential local root privilege escalation

Package: kdebase-bin
Version: 3.4.2-2
Severity: grave
Tags: security
Justification: user security hole

Please see http://www.kde.org/info/security/advisory-20050905-1.txt for details
and a patch.

Cheers,
        Moritz
-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.12-rc5
Locale: LANG=C, LC_CTYPE=de_DE.ISO-8859-15@euro (charmap=ISO-8859-15)

Revision history for this message
Debian Bug Importer (debzilla) wrote :

Message-Id: <email address hidden>
Date: Wed, 7 Sep 2005 10:46:09 +0200
From: Isaac Clerencia <email address hidden>
To: Moritz Muehlenhoff <email address hidden>, <email address hidden>
Subject: Re: Bug#327039: CAN-2005-2494: Insecure lockfile handling permits potential local root
 privilege escalation

--nextPart1330587.AucKjKcUbH
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

On Wednesday, 7 September 2005 10:23, Moritz Muehlenhoff wrote:
> Package: kdebase-bin
> Version: 3.4.2-2
> Severity: grave
> Tags: security
> Justification: user security hole
>
> Please see http://www.kde.org/info/security/advisory-20050905-1.txt for
> details and a patch.
The patch is already applied in our SVN and will be uploaded soon.

Best regards

=2D-=20
Isaac Clerencia at Warp Networks, http://www.warp.es
Work: <email address hidden> | Debian: <email address hidden>

--nextPart1330587.AucKjKcUbH
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Signed by Isaac Clerencia <email address hidden>

iD8DBQBDHqjVQET2GFTmct4RAotUAJ9y2IqcbHvNDVJvvJq4NNQsWPhBTwCfXBMF
IYj3xIyJcqAONoqdHxRX1/g=
=DG0k
-----END PGP SIGNATURE-----

--nextPart1330587.AucKjKcUbH--

Revision history for this message
Martin Pitt (pitti) wrote :

Already fixed in USN-176-1 and Breezy.

Revision history for this message
In , Debian Qt/KDE Maintainers (debian-qt-kde) wrote : Bug#327039: fixed in kdebase 4:3.4.2-3
Download full text (9.6 KiB)

Source: kdebase
Source-Version: 4:3.4.2-3

We believe that the bug you reported is fixed in the latest version of
kdebase, which is due to be installed in the Debian FTP archive:

kappfinder_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kappfinder_3.4.2-3_i386.deb
kate_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kate_3.4.2-3_i386.deb
kcontrol_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kcontrol_3.4.2-3_i386.deb
kdebase-bin_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdebase-bin_3.4.2-3_i386.deb
kdebase-data_3.4.2-3_all.deb
  to pool/main/k/kdebase/kdebase-data_3.4.2-3_all.deb
kdebase-dev_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdebase-dev_3.4.2-3_i386.deb
kdebase-doc-html_3.4.2-3_all.deb
  to pool/main/k/kdebase/kdebase-doc-html_3.4.2-3_all.deb
kdebase-doc_3.4.2-3_all.deb
  to pool/main/k/kdebase/kdebase-doc_3.4.2-3_all.deb
kdebase-kio-plugins_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdebase-kio-plugins_3.4.2-3_i386.deb
kdebase_3.4.2-3.diff.gz
  to pool/main/k/kdebase/kdebase_3.4.2-3.diff.gz
kdebase_3.4.2-3.dsc
  to pool/main/k/kdebase/kdebase_3.4.2-3.dsc
kdebase_3.4.2-3_all.deb
  to pool/main/k/kdebase/kdebase_3.4.2-3_all.deb
kdepasswd_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdepasswd_3.4.2-3_i386.deb
kdeprint_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdeprint_3.4.2-3_i386.deb
kdesktop_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdesktop_3.4.2-3_i386.deb
kdm_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdm_3.4.2-3_i386.deb
kfind_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kfind_3.4.2-3_i386.deb
khelpcenter_3.4.2-3_i386.deb
  to pool/main/k/kdebase/khelpcenter_3.4.2-3_i386.deb
kicker_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kicker_3.4.2-3_i386.deb
klipper_3.4.2-3_i386.deb
  to pool/main/k/kdebase/klipper_3.4.2-3_i386.deb
kmenuedit_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kmenuedit_3.4.2-3_i386.deb
konqueror-nsplugins_3.4.2-3_i386.deb
  to pool/main/k/kdebase/konqueror-nsplugins_3.4.2-3_i386.deb
konqueror_3.4.2-3_i386.deb
  to pool/main/k/kdebase/konqueror_3.4.2-3_i386.deb
konsole_3.4.2-3_i386.deb
  to pool/main/k/kdebase/konsole_3.4.2-3_i386.deb
kpager_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kpager_3.4.2-3_i386.deb
kpersonalizer_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kpersonalizer_3.4.2-3_i386.deb
ksmserver_3.4.2-3_i386.deb
  to pool/main/k/kdebase/ksmserver_3.4.2-3_i386.deb
ksplash_3.4.2-3_i386.deb
  to pool/main/k/kdebase/ksplash_3.4.2-3_i386.deb
ksysguard_3.4.2-3_i386.deb
  to pool/main/k/kdebase/ksysguard_3.4.2-3_i386.deb
ksysguardd_3.4.2-3_i386.deb
  to pool/main/k/kdebase/ksysguardd_3.4.2-3_i386.deb
ktip_3.4.2-3_i386.deb
  to pool/main/k/kdebase/ktip_3.4.2-3_i386.deb
kwin_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kwin_3.4.2-3_i386.deb
libkonq4-dev_3.4.2-3_i386.deb
  to pool/main/k/kdebase/libkonq4-dev_3.4.2-3_i386.deb
libkonq4_3.4.2-3_i386.deb
  to pool/main/k/kdebase/libkonq4_3.4.2-3_i386.deb
xfonts-konsole_3.4.2-3_all.deb
  to pool/main/k/kdebase/xfonts-konsole_3.4.2-3_all.deb

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to <email address hidden>,
and the maintainer will reopen the bug report i...

Read more...

Revision history for this message
Debian Bug Importer (debzilla) wrote :
Download full text (9.8 KiB)

Message-Id: <email address hidden>
Date: Fri, 16 Sep 2005 19:32:13 -0700
From: Debian Qt/KDE Maintainers <email address hidden>
To: <email address hidden>
Subject: Bug#327039: fixed in kdebase 4:3.4.2-3

Source: kdebase
Source-Version: 4:3.4.2-3

We believe that the bug you reported is fixed in the latest version of
kdebase, which is due to be installed in the Debian FTP archive:

kappfinder_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kappfinder_3.4.2-3_i386.deb
kate_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kate_3.4.2-3_i386.deb
kcontrol_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kcontrol_3.4.2-3_i386.deb
kdebase-bin_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdebase-bin_3.4.2-3_i386.deb
kdebase-data_3.4.2-3_all.deb
  to pool/main/k/kdebase/kdebase-data_3.4.2-3_all.deb
kdebase-dev_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdebase-dev_3.4.2-3_i386.deb
kdebase-doc-html_3.4.2-3_all.deb
  to pool/main/k/kdebase/kdebase-doc-html_3.4.2-3_all.deb
kdebase-doc_3.4.2-3_all.deb
  to pool/main/k/kdebase/kdebase-doc_3.4.2-3_all.deb
kdebase-kio-plugins_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdebase-kio-plugins_3.4.2-3_i386.deb
kdebase_3.4.2-3.diff.gz
  to pool/main/k/kdebase/kdebase_3.4.2-3.diff.gz
kdebase_3.4.2-3.dsc
  to pool/main/k/kdebase/kdebase_3.4.2-3.dsc
kdebase_3.4.2-3_all.deb
  to pool/main/k/kdebase/kdebase_3.4.2-3_all.deb
kdepasswd_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdepasswd_3.4.2-3_i386.deb
kdeprint_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdeprint_3.4.2-3_i386.deb
kdesktop_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdesktop_3.4.2-3_i386.deb
kdm_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kdm_3.4.2-3_i386.deb
kfind_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kfind_3.4.2-3_i386.deb
khelpcenter_3.4.2-3_i386.deb
  to pool/main/k/kdebase/khelpcenter_3.4.2-3_i386.deb
kicker_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kicker_3.4.2-3_i386.deb
klipper_3.4.2-3_i386.deb
  to pool/main/k/kdebase/klipper_3.4.2-3_i386.deb
kmenuedit_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kmenuedit_3.4.2-3_i386.deb
konqueror-nsplugins_3.4.2-3_i386.deb
  to pool/main/k/kdebase/konqueror-nsplugins_3.4.2-3_i386.deb
konqueror_3.4.2-3_i386.deb
  to pool/main/k/kdebase/konqueror_3.4.2-3_i386.deb
konsole_3.4.2-3_i386.deb
  to pool/main/k/kdebase/konsole_3.4.2-3_i386.deb
kpager_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kpager_3.4.2-3_i386.deb
kpersonalizer_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kpersonalizer_3.4.2-3_i386.deb
ksmserver_3.4.2-3_i386.deb
  to pool/main/k/kdebase/ksmserver_3.4.2-3_i386.deb
ksplash_3.4.2-3_i386.deb
  to pool/main/k/kdebase/ksplash_3.4.2-3_i386.deb
ksysguard_3.4.2-3_i386.deb
  to pool/main/k/kdebase/ksysguard_3.4.2-3_i386.deb
ksysguardd_3.4.2-3_i386.deb
  to pool/main/k/kdebase/ksysguardd_3.4.2-3_i386.deb
ktip_3.4.2-3_i386.deb
  to pool/main/k/kdebase/ktip_3.4.2-3_i386.deb
kwin_3.4.2-3_i386.deb
  to pool/main/k/kdebase/kwin_3.4.2-3_i386.deb
libkonq4-dev_3.4.2-3_i386.deb
  to pool/main/k/kdebase/libkonq4-dev_3.4.2-3_i386.deb
libkonq4_3.4.2-3_i386.deb
  to pool/main/k/kdebase/libkonq4_3.4.2-3_i386.deb
xfonts-konsole_3.4.2-3_all.deb
  to pool/main/k/kdebase/xfonts-konsole_3.4.2-3_all.deb

A summary of the changes betwe...

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.