Contact | Site en Français               

 


 

Vulnerabilities & Threats
 
  VUPEN Security Advisories
  Linux Security Advisories

  Malware Advisories
  Security Research
  Threat Watch Blog
  Zero-Day Monitor
  Search Engine
  Mailing List & RSS
 
   

>> Trustix Security Update Fixes Multiple Package Remote and Local Vulnerabilities

Title : Trustix Security Update Fixes Multiple Package Remote and Local Vulnerabilities
VUPEN ID : VUPEN/ADV-2006-1280
CVE ID : CVE-2006-1055 - CVE-2006-1354 - CVE-2006-1490 - CVE-2006-1614 - CVE-2006-1615 - CVE-2006-1630
Rated as : Critical 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2006-04-10

Technical Description    Receive VUPEN Security alerts in a Text format  Receive VUPEN Security alerts in a PDF format  Receive VUPEN Security alerts in an XML format 

Trustix has released updated packages to address multiple security vulnerabilities identified in clamav, freeradius, kernel and php. These flaws could be exploited by local or remote attackers to bypass security restrictions, execute arbitrary commands or cause a denial of service. For additional information, see : VUPEN/ADV-2006-1258 - VUPEN/ADV-2006-1016 - VUPEN/ADV-2006-1273 - VUPEN/ADV-2006-1149

Affected Products

Trustix Secure Linux 2.2
Trustix Secure Linux 3.0

Solution

Upgrade the affected packages :
http://http.trustix.org/pub/trustix/updates/
38d4f9dc89bea24c96bbd4517819cf2b 3.0/rpms/clamav-0.88.1-1tr.i586.rpm
ef3626a0575a380eb9a52f215b930fd5 3.0/rpms/clamav-devel-0.88.1-1tr.i586.rpm
3be0a4c026bca81ccb21350882ec8f02 3.0/rpms/freeradius-1.1.1-1tr.i586.rpm
0aff2807eede62e1fbb55a4b1566f6ef 3.0/rpms/freeradius-devel-1.1.1-1tr.i586.rpm
3651228f51e7bee81ea8bba1175b7263 3.0/rpms/freeradius-libs-1.1.1-1tr.i586.rpm
5db77536ee9f719e3433d1041a8f563e 3.0/rpms/freeradius-mysql-1.1.1-1tr.i586.rpm
bbab73b001ce1a5a577455032da5eee9 3.0/rpms/freeradius-postgresql-1.1.1-1tr.i586.rpm
dc3f8b39d22e9fd02ffe45d3248243c7 3.0/rpms/kernel-2.6.16.1-2tr.i586.rpm
f2d1ed4a4b4a6308b3b075d9da8fe3fa 3.0/rpms/kernel-doc-2.6.16.1-2tr.i586.rpm
adcb8a8a715cbcd482d61f0a57d37c71 3.0/rpms/kernel-headers-2.6.16.1-2tr.i586.rpm
014028cef8ae3b9ccec00a9d44d2a6c8 3.0/rpms/kernel-smp-2.6.16.1-2tr.i586.rpm
7d0b621ca9de20fd3e3e8820cb69ad54 3.0/rpms/kernel-smp-headers-2.6.16.1-2tr.i586.rpm
158a796e2fab4bb7487aed0025c225cb 3.0/rpms/kernel-source-2.6.16.1-2tr.i586.rpm
51b74dd79ac1be7a08e0bd05cdd34c93 3.0/rpms/kernel-utils-2.6.16.1-2tr.i586.rpm
a0c7bf9444cae998387a6840ecdb993d 2.2/rpms/clamav-0.88.1-1tr.i586.rpm
38a042ca58d30cb683c2b969fda92852 2.2/rpms/clamav-devel-0.88.1-1tr.i586.rpm
849dc43801723da5406adae733196e7a 2.2/rpms/php4-4.4.2-2tr.i586.rpm
cafe2edeb7fd62e45ba922cbd966134f 2.2/rpms/php4-cli-4.4.2-2tr.i586.rpm
4173f1a52ad435f892e26b80e915f4a8 2.2/rpms/php4-curl-4.4.2-2tr.i586.rpm
920dfbc1068ed06224905f473e10f0b7 2.2/rpms/php4-devel-4.4.2-2tr.i586.rpm
48956c89dad7be77d470d830ba51e167 2.2/rpms/php4-domxml-4.4.2-2tr.i586.rpm
8be42eed933c5c5ea98463f5fe31c297 2.2/rpms/php4-exif-4.4.2-2tr.i586.rpm
24c4eeab0158445f586950a85880fc81 2.2/rpms/php4-fcgi-4.4.2-2tr.i586.rpm
1bcfbb3eb2fb1b93eeaa31361d727f70 2.2/rpms/php4-gd-4.4.2-2tr.i586.rpm
db53ab1ce0fa6c6cbab9c44b22b98de8 2.2/rpms/php4-imap-4.4.2-2tr.i586.rpm
4724513e132696ccad9185381a2c212c 2.2/rpms/php4-ldap-4.4.2-2tr.i586.rpm
7aadc9cc315fcaa2c45e083b76354d7e 2.2/rpms/php4-mhash-4.4.2-2tr.i586.rpm
1951d1819c28de1377bee3aba4cb2bb1 2.2/rpms/php4-mysql-4.4.2-2tr.i586.rpm
406bc367169f66bc294218360c43e612 2.2/rpms/php4-pgsql-4.4.2-2tr.i586.rpm
7630da70fed34bf0fbef1f770911047f 2.2/rpms/php4-test-4.4.2-2tr.i586.rpm

References

http://www.vupen.com/english/advisories/2006/1280
http://lists.trustix.org/pipermail/tsl-announce/2006-April/000394.html

ChangeLog

2006-04-10 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.
 

Vulnerability Alerting

Free 14-Day Trial
 
  Latest News

 

  >> 2009-07-06

     

  Microsoft Windows 0-Day
  Flaw Exploited in the Wild


  >> 2009-06-10

     

  VUPEN Security Research
  Discovered Critical Flaws
  in Adobe Acrobat and MS
  Office Word


  >> 2009-06-02

     

  VUPEN Security Research
  Discovered Critical Flaws
  in ACDSee Products


  >> 2009-05-22

     

  VUPEN Discovered Two
  Critical Vulnerabilities in
  Novell GroupWise 8 / 7

 

 

More Informations    
    








Copyright 2003-2009 © VUPEN.COM - Privacy Policy