First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 22952
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Daniel Ahlberg (RETIRED) <aliz@gentoo.org>
Add CC:
CC:
URL:
Summary:
Status Whiteboard:
Keywords:

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 22952 depends on: Show dependency tree
Bug 22952 blocks:
Votes: 0    Show votes for this bug    Vote for this bug

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2003-06-16 13:43 0000 
[SECURITY] [DSA-316-1] New nethack packages fix buffer overflow, incorrect
permissions 

From:  
Matt Zimmerman <mdz@debian.org> 


To:  
debian-security-announce@lists.debian.org 


Date:  
Thursday 02.27.50 



Message was signed with unknown key 0x43E25D1E. 
The validity of the signature cannot be verified. 


-------------------------------------------------------------------------- 
Debian Security Advisory DSA 316-1                     security@debian.org 
http://www.debian.org/security/                             Matt Zimmerman 
June 11th, 2003                         http://www.debian.org/security/faq 
-------------------------------------------------------------------------- 

Package        : nethack 
Vulnerability  : buffer overflow, incorrect permissions 
Problem-Type   : local 
Debian-specific: no 
CVE Id         : CAN-2003-0358 CAN-2003-0359 

The nethack package is vulnerable to a buffer overflow exploited via a 
long '-s' command line option.  This vulnerability could be used by an 
attacker to gain gid 'games' on a system where nethack is installed. 

Additionally, some setgid binaries in the nethack package have 
incorrect permissions, which could allow a user who gains gid 'games' 
to replace these binaries, potentially causing other users to execute 
malicious code when they run nethack.

------- Comment #1 From SpanKY 2003-06-22 20:38:52 0000 ------- 
i removed the setgid bit because it causes permission problems in other cases
... didnt 
realize we had a security bug report ;) 

http://cvs.gentoo.org/cgi-bin/viewcvs.cgi/gentoo-x86/app-games/nethack/nethack-3.4.1.ebuild.diff?r1=1.6&r2=1.7
First Last Prev Next    No search results available      Search page      Enter new bug