(Fedora Issues Fix for FC3) Ruby Unsafe Temporary Files May Let Local Users Gain Elevated Privileges
|
|
SecurityTracker Alert ID: 1012211 |
|
SecurityTracker URL: http://securitytracker.com/id/1012211
|
|
CVE Reference:
CAN-2004-0755
(Links to External Site)
|
Date: Nov 12 2004
|
Impact:
Disclosure of system information, Disclosure of user information
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 1.8.1 and prior versions
|
Description:
A vulnerability was reported in Ruby in the processing of temporary files. A local user may be able to gain elevated privileges.
Andres Salomon reported that CGI::Session stores FileStore session data in an unsafe manner. Files are created in the 'tmp' directory without the proper permissions. As a result, a local user may be able to access the files and take over a target user's session.
|
Impact:
A local user may be able to hijack a target user's session.
|
Solution:
Fedora has released a fix, available at:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
e423a05f3e6a63767c6ab5b886c882ad SRPMS/ruby-1.8.1-7.FC3.1.src.rpm
fb594cf216b9725b7fd4b8347e79eb1a x86_64/ruby-1.8.1-7.FC3.1.x86_64.rpm
4528129815539f8fe3ebc6c69b648d33 x86_64/irb-1.8.1-7.FC3.1.x86_64.rpm
48e0554aa63e4765dfbd2d71dafccde7 x86_64/debug/ruby-debuginfo-1.8.1-7.FC3.1.x86_64.rpm
9a8ca938db4721ab82132394c4f56299 x86_64/ruby-devel-1.8.1-7.FC3.1.x86_64.rpm
e8878f90c73e5045d936e5fa2e70e846 x86_64/ruby-docs-1.8.1-7.FC3.1.x86_64.rpm
47d9d40d7fef2ef8a92cf9c660f255dc x86_64/ruby-libs-1.8.1-7.FC3.1.x86_64.rpm
1f1919213fa7c8861605d1e0c982e422 x86_64/ruby-mode-1.8.1-7.FC3.1.x86_64.rpm
a891cb18610b83c0fb6fed21b7ee7641 x86_64/ruby-tcltk-1.8.1-7.FC3.1.x86_64.rpm
2f26d34775553cee2980645c6654aed9 x86_64/ruby-libs-1.8.1-7.FC3.1.i386.rpm
912970b09bb1e07d026a9d4ff719cd98 i386/ruby-devel-1.8.1-7.FC3.1.i386.rpm
177f1ba8bf1d42de2335ec0177f14fe0 i386/irb-1.8.1-7.FC3.1.i386.rpm
a92fe04818616b255e04cf4379e3e7be i386/ruby-1.8.1-7.FC3.1.i386.rpm
29bc7a12865e313eb41c90cc9be69f10 i386/debug/ruby-debuginfo-1.8.1-7.FC3.1.i386.rpm
130d73a9b8eaeceee0b7e10a8e80aec4 i386/ruby-docs-1.8.1-7.FC3.1.i386.rpm
2f26d34775553cee2980645c6654aed9 i386/ruby-libs-1.8.1-7.FC3.1.i386.rpm
5e2582af078ebb5218eb4dcdece19062 i386/ruby-mode-1.8.1-7.FC3.1.i386.rpm
76ef077fc025371af17239f7e3769d8b i386/ruby-tcltk-1.8.1-7.FC3.1.i386.rpm
|
Vendor URL: www.ruby-lang.org/ (Links to External Site)
|
Cause:
Access control error
|
Underlying OS:
Linux (Red Hat Fedora)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Thu, 11 Nov 2004 14:03:57 +0900 (JST)
Subject: [SECURITY] Fedora Core 3 Update: ruby-1.8.1-7.FC3.1
|
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-403
2004-11-11
---------------------------------------------------------------------
Product : Fedora Core 3
Name : ruby
Version : 1.8.1
Release : 7.FC3.1
Summary : An interpreter of object-oriented scripting language
Description :
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in Perl). It is simple,
straight-forward, and extensible.
---------------------------------------------------------------------
* Thu Nov 11 2004 Akira TAGOH <tagoh@redhat.com> - 1.8.1-7.FC3.1
- security fix [CAN-2004-0983]
- security fix [CAN-2004-0755]
- ruby-1.8.1-cgi-dos.patch: applied to fix a denial of service issue. (#138366)
- ruby-1.8.1-cgi_session_perms.patch: sets the permission of the session data
file to 0600. (#130063)
* Sat Oct 30 2004 Akira TAGOH <tagoh@redhat.com> - 1.8.1-7.fc3
- added openssl-devel and db4-devel into BuildRequires. (#137479)
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
e423a05f3e6a63767c6ab5b886c882ad SRPMS/ruby-1.8.1-7.FC3.1.src.rpm
fb594cf216b9725b7fd4b8347e79eb1a x86_64/ruby-1.8.1-7.FC3.1.x86_64.rpm
4528129815539f8fe3ebc6c69b648d33 x86_64/irb-1.8.1-7.FC3.1.x86_64.rpm
48e0554aa63e4765dfbd2d71dafccde7 x86_64/debug/ruby-debuginfo-1.8.1-7.FC3.1.x86_64.rpm
9a8ca938db4721ab82132394c4f56299 x86_64/ruby-devel-1.8.1-7.FC3.1.x86_64.rpm
e8878f90c73e5045d936e5fa2e70e846 x86_64/ruby-docs-1.8.1-7.FC3.1.x86_64.rpm
47d9d40d7fef2ef8a92cf9c660f255dc x86_64/ruby-libs-1.8.1-7.FC3.1.x86_64.rpm
1f1919213fa7c8861605d1e0c982e422 x86_64/ruby-mode-1.8.1-7.FC3.1.x86_64.rpm
a891cb18610b83c0fb6fed21b7ee7641 x86_64/ruby-tcltk-1.8.1-7.FC3.1.x86_64.rpm
2f26d34775553cee2980645c6654aed9 x86_64/ruby-libs-1.8.1-7.FC3.1.i386.rpm
912970b09bb1e07d026a9d4ff719cd98 i386/ruby-devel-1.8.1-7.FC3.1.i386.rpm
177f1ba8bf1d42de2335ec0177f14fe0 i386/irb-1.8.1-7.FC3.1.i386.rpm
a92fe04818616b255e04cf4379e3e7be i386/ruby-1.8.1-7.FC3.1.i386.rpm
29bc7a12865e313eb41c90cc9be69f10 i386/debug/ruby-debuginfo-1.8.1-7.FC3.1.i386.rpm
130d73a9b8eaeceee0b7e10a8e80aec4 i386/ruby-docs-1.8.1-7.FC3.1.i386.rpm
2f26d34775553cee2980645c6654aed9 i386/ruby-libs-1.8.1-7.FC3.1.i386.rpm
5e2582af078ebb5218eb4dcdece19062 i386/ruby-mode-1.8.1-7.FC3.1.i386.rpm
76ef077fc025371af17239f7e3769d8b i386/ruby-tcltk-1.8.1-7.FC3.1.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
--
fedora-announce-list mailing list
fedora-announce-list@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-announce-list
|
|
