First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 94474
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Alberto Ornaghi <alor@antifork.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 94474 depends on: Show dependency tree
Bug 94474 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2005-05-30 01:24 0000 
a new version is available. it fixes a security bug. upgrade is strongly
encouraged. please create an ebuild for 0.7.3 and mark it available to anyone.

Reproducible: Always
Steps to Reproduce:
1.
2.
3.

------- Comment #1 From Jakub Moc (RETIRED) 2005-05-30 01:41:48 0000 ------- 
Hmm, but they failed to say anything about the serious bug... 

NG-0.7.3

+ added the INC (+=) and DEC (-=) operators to the filter engine
!! fixed the compilation of some plugins
!! fixed a segfault in the isolate plugin
!! fixed a bug in the dhcp spoofing module
!! fixed a serious security bug

------- Comment #2 From Alberto Ornaghi 2005-05-30 05:36:38 0000 ------- 
there was a format bug vulnerabilty in the curses gui.

------- Comment #3 From Sune Kloppenborg Jeppesen 2005-05-30 08:16:47 0000 ------- 
Jon please verify and bump as needed. Does it run as root?

------- Comment #4 From Thierry Carrez (RETIRED) 2005-06-01 05:57:50 0000 ------- 
jaervosz: probably not SUID root but still runs as root very often to perform
dirty tricks like spoofing ARP packets.

netmon: squinky86 is apparently inactive, please bump

------- Comment #5 From Daniel Black 2005-06-07 23:28:54 0000 ------- 
I've added  ettercap 0.7.3 however it still contains a text location that will 
cause problems with people in a hardened profile. scanelf (from 
cvs:gentoo-projects/paxutils) was used to determine this. I've been caught up 
completing an assignment for the next few days. 
 
if someone can look at this and provide an approprate patch I'd appreciate it. 
I suspect its a missing -fPIC option when compiling a shared library. All 
the .so plugins are clear of text relocations. Its just /usr/bin/ettercap that 
had the TEXTREL.

------- Comment #6 From Thierry Carrez (RETIRED) 2005-06-10 07:40:25 0000 ------- 
hardened: could you please help wrt comment #5 ? We don't want to stable-ize
something that will break under your profiles :)

------- Comment #7 From solar 2005-06-10 08:07:33 0000 ------- 
Thanks koon I'm merging the depends now. I'll report back shortly

------- Comment #8 From solar 2005-06-10 08:31:34 0000 ------- 
net-analyzer/ettercap-0.7.3 with -debug +gtk +ssl +ncurses is clean for me. 
Compiles and runs with full memory protections enabled.
I think the problem is with another library on Daniel Black's box. 
I'll work with him on irc to track that down.

So no objections from hardened. Please mark stable and release the GLSA 
when your ready.

------- Comment #9 From Thierry Carrez (RETIRED) 2005-06-10 08:49:40 0000 ------- 
Target KEYWORDS="x86 ~amd64 sparc ppc hppa alpha"
Arches, please test and mark stable

------- Comment #10 From Luca Barbato 2005-06-10 10:58:03 0000 ------- 
Marked ppc

------- Comment #11 From Gustavo Zacarias (RETIRED) 2005-06-10 11:27:13 0000 ------- 
sparc tasty.

------- Comment #12 From Aron Griffis (RETIRED) 2005-06-10 13:39:07 0000 ------- 
stable on alpha

------- Comment #13 From René Nussbaumer 2005-06-10 14:37:54 0000 ------- 
Stable on hppa

------- Comment #14 From Daniel Black 2005-06-10 19:03:41 0000 ------- 
x86 stable. dependancy changed to libnet-1.1.2.1-r1 due to pic issues. 
 
all stable.

------- Comment #15 From Thierry Carrez (RETIRED) 2005-06-11 01:21:49 0000 ------- 
Ready for GLSA

------- Comment #16 From Thierry Carrez (RETIRED) 2005-06-11 05:15:53 0000 ------- 
GLSA 200506-07
First Last Prev Next    No search results available      Search page      Enter new bug