exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

Ubuntu Security Notice 638-1

Ubuntu Security Notice 638-1
Posted Aug 27, 2008
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 638-1 - Aaron Grattafiori discovered that the Gnome Help Viewer did not handle format strings correctly when displaying certain error messages. If a user were tricked into opening a specially crafted URI, a remote attacker could execute arbitrary code with user privileges.

tags | advisory, remote, arbitrary
systems | linux, ubuntu
advisories | CVE-2008-3533
SHA-256 | 86831794d274f24fc29c9fdd721b2c8ce02dcd0070de1a5bfe5b4903150f4f74

Ubuntu Security Notice 638-1

Change Mirror Download
=========================================================== 
Ubuntu Security Notice USN-638-1 August 27, 2008
yelp vulnerability
CVE-2008-3533
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 7.10
Ubuntu 8.04 LTS

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 7.10:
yelp 2.20.0-0ubuntu3.1

Ubuntu 8.04 LTS:
yelp 2.22.1-0ubuntu2.8.04.3

In general, a standard system upgrade is sufficient to effect the
necessary changes.

Details follow:

Aaron Grattafiori discovered that the Gnome Help Viewer did not handle
format strings correctly when displaying certain error messages. If a
user were tricked into opening a specially crafted URI, a remote attacker
could execute arbitrary code with user privileges.


Updated packages for Ubuntu 7.10:

Source archives:

http://security.ubuntu.com/ubuntu/pool/main/y/yelp/yelp_2.20.0-0ubuntu3.1.diff.gz
Size/MD5: 850373 f1bacca35ae3410344a7bf1aef1529c8
http://security.ubuntu.com/ubuntu/pool/main/y/yelp/yelp_2.20.0-0ubuntu3.1.dsc
Size/MD5: 1335 bb08a9c70bc29bb5921d43b151d4abec
http://security.ubuntu.com/ubuntu/pool/main/y/yelp/yelp_2.20.0.orig.tar.gz
Size/MD5: 1327272 78603f3a62a2c651d813c81c553ffba2

amd64 architecture (Athlon64, Opteron, EM64T Xeon):

http://security.ubuntu.com/ubuntu/pool/main/y/yelp/yelp_2.20.0-0ubuntu3.1_amd64.deb
Size/MD5: 347978 0f199a836a45c0c13d431157711ff9bf

i386 architecture (x86 compatible Intel/AMD):

http://security.ubuntu.com/ubuntu/pool/main/y/yelp/yelp_2.20.0-0ubuntu3.1_i386.deb
Size/MD5: 337348 6b2cdaa678d2f1c08bfdadb50cc54435

lpia architecture (Low Power Intel Architecture):

http://ports.ubuntu.com/pool/main/y/yelp/yelp_2.20.0-0ubuntu3.1_lpia.deb
Size/MD5: 337892 b5e5d4123b09e2707e099eb31e9600a2

powerpc architecture (Apple Macintosh G3/G4/G5):

http://security.ubuntu.com/ubuntu/pool/main/y/yelp/yelp_2.20.0-0ubuntu3.1_powerpc.deb
Size/MD5: 351482 e8e453f18768563594db022523120401

sparc architecture (Sun SPARC/UltraSPARC):

http://security.ubuntu.com/ubuntu/pool/main/y/yelp/yelp_2.20.0-0ubuntu3.1_sparc.deb
Size/MD5: 340976 ac55a07c68d69579e9835dd1a725bf6b

Updated packages for Ubuntu 8.04 LTS:

Source archives:

http://security.ubuntu.com/ubuntu/pool/main/y/yelp/yelp_2.22.1-0ubuntu2.8.04.3.diff.gz
Size/MD5: 1266220 616a1b19286e879edb4e7e94da4b1d79
http://security.ubuntu.com/ubuntu/pool/main/y/yelp/yelp_2.22.1-0ubuntu2.8.04.3.dsc
Size/MD5: 1276 6b3bcddcd1243e7e79f9c95452dc7210
http://security.ubuntu.com/ubuntu/pool/main/y/yelp/yelp_2.22.1.orig.tar.gz
Size/MD5: 1528478 e97a18f7e002d293394726004fc110b7

amd64 architecture (Athlon64, Opteron, EM64T Xeon):

http://security.ubuntu.com/ubuntu/pool/main/y/yelp/yelp_2.22.1-0ubuntu2.8.04.3_amd64.deb
Size/MD5: 359430 89b9fa6b606101948ee12f67d60135e4

i386 architecture (x86 compatible Intel/AMD):

http://security.ubuntu.com/ubuntu/pool/main/y/yelp/yelp_2.22.1-0ubuntu2.8.04.3_i386.deb
Size/MD5: 346710 a0d5b5159aca614667d72573e2cbbd70

lpia architecture (Low Power Intel Architecture):

http://ports.ubuntu.com/pool/main/y/yelp/yelp_2.22.1-0ubuntu2.8.04.3_lpia.deb
Size/MD5: 347308 3cfb6569b2b090ead5b97ed20c4fc141

powerpc architecture (Apple Macintosh G3/G4/G5):

http://ports.ubuntu.com/pool/main/y/yelp/yelp_2.22.1-0ubuntu2.8.04.3_powerpc.deb
Size/MD5: 361592 1aa001d6994747b62c1d6f90f9e42223

Login or Register to add favorites

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    0 Files
  • 15
    Nov 15th
    0 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close