Debian Bug report logs - #407020
SA23736: libgtop2: "glibtop_get_proc_map_s()" Buffer Overflow

version graph

Package: libgtop2; Maintainer for libgtop2 is Debian GNOME Maintainers <pkg-gnome-maintainers@lists.alioth.debian.org>;

Reported by: Alex de Oliveira Silva <enerv@host.sk>

Date: Mon, 15 Jan 2007 23:12:53 UTC

Severity: important

Fixed in version 2.14.6-1

Done: Loïc Minier <lool@dooz.org>

Bug is archived. No further changes may be made.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox


Report forwarded to debian-bugs-dist@lists.debian.org, Sebastien Bacher <seb128@debian.org>:
Bug#407020; Package libgtop2. Full text and rfc822 format available.

Acknowledgement sent to Alex de Oliveira Silva <enerv@host.sk>:
New Bug report received and forwarded. Copy sent to Sebastien Bacher <seb128@debian.org>. Full text and rfc822 format available.

Message #5 received at submit@bugs.debian.org (full text, mbox):

From: Alex de Oliveira Silva <enerv@host.sk>
To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: SA23736: libgtop2: "glibtop_get_proc_map_s()" Buffer Overflow
Date: Mon, 15 Jan 2007 14:12:23 -0300
Package: libgtop2
Severity: important

Vulnerability in libgtop2, which can be exploited by malicious, local
users to gain escalated privileges.
The vulnerability is caused due to a boundary error within the
"glibtop_get_proc_map_s()" function in sysdeps/linux/procmap.c. This can
be exploited to cause a stack-based buffer overflow by running a with
a specially crafted long path and tricking a victim into running an 
application using the library (e.g. gnome-system-monitor).

Solution:
Update to version 2.14.6.

Reference:
http://secunia.com/advisories/23736/

-- System Information:
Debian Release: 4.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-3-486
Locale: LANG=pt_BR.UTF-8, LC_CTYPE=pt_BR.UTF-8 (charmap=UTF-8)



regards,
-- 
   .''`.  
  : :' :    Alex de Oliveira Silva | enerv
  `. `'     www.enerv.net
    `- 



Reply sent to Loïc Minier <lool@dooz.org>:
You have taken responsibility. Full text and rfc822 format available.

Notification sent to Alex de Oliveira Silva <enerv@host.sk>:
Bug acknowledged by developer. Full text and rfc822 format available.

Message #10 received at 407020-done@bugs.debian.org (full text, mbox):

From: Loïc Minier <lool@dooz.org>
To: Alex de Oliveira Silva <enerv@host.sk>, 407020-done@bugs.debian.org
Subject: Re: Bug#407020: SA23736: libgtop2: "glibtop_get_proc_map_s()" Buffer Overflow
Date: Tue, 16 Jan 2007 07:52:47 +0100
Version: 2.14.6-1

On Mon, Jan 15, 2007, Alex de Oliveira Silva wrote:
> Vulnerability in libgtop2, which can be exploited by malicious, local
> users to gain escalated privileges.
> The vulnerability is caused due to a boundary error within the
> "glibtop_get_proc_map_s()" function in sysdeps/linux/procmap.c. This can
> be exploited to cause a stack-based buffer overflow by running a with
> a specially crafted long path and tricking a victim into running an 
> application using the library (e.g. gnome-system-monitor).

 Fixed yesterday already...

-- 
Loïc Minier <lool@dooz.org>



Information forwarded to debian-bugs-dist@lists.debian.org, Sebastien Bacher <seb128@debian.org>:
Bug#407020; Package libgtop2. Full text and rfc822 format available.

Acknowledgement sent to Alex de Oliveira Silva <enerv@host.sk>:
Extra info received and forwarded to list. Copy sent to Sebastien Bacher <seb128@debian.org>. Full text and rfc822 format available.

Message #15 received at 407020@bugs.debian.org (full text, mbox):

From: Alex de Oliveira Silva <enerv@host.sk>
To: lool@dooz.org
Subject: Help in libgtop
Date: Tue, 16 Jan 2007 11:58:22 -0300
[Message part 1 (application/pgp, inline)]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Version of libgtop 2.14.6-1 is not affected with "glibtop_get_proc_map_s"
Ok, and the another's version is vulnerable?

Oldstable 1.90.2-4
Stable 2.6.0-4
Testing 2.14.4-2
Unstable 2.14.4-3

Thanks in advanced.


regards,
- --
   .''`.  
  : :' :    Alex de Oliveira Silva | enerv
  `. `'     www.enerv.net
    `-
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFrOgOarbczl+z12gRAmZ0AKCYO42+11OoQj65p3s1+owRBG8jwgCfTMXt
ddfVCh5gOQW3vkA2O12jaz0=
=V77t
-----END PGP SIGNATURE-----




Information forwarded to debian-bugs-dist@lists.debian.org, Sebastien Bacher <seb128@debian.org>:
Bug#407020; Package libgtop2. Full text and rfc822 format available.

Acknowledgement sent to Loïc Minier <lool@dooz.org>:
Extra info received and forwarded to list. Copy sent to Sebastien Bacher <seb128@debian.org>. Full text and rfc822 format available.

Message #20 received at 407020@bugs.debian.org (full text, mbox):

From: Loïc Minier <lool@dooz.org>
To: Alex de Oliveira Silva <enerv@host.sk>
Cc: 407020@bugs.debian.org, control@bugs.debian.org
Subject: Re: Help in libgtop
Date: Tue, 16 Jan 2007 16:41:18 +0100
notfound 407020 2.14.4-3
stop

On Tue, Jan 16, 2007, Alex de Oliveira Silva wrote:
> Oldstable 1.90.2-4

 This is not supported anyore and was archived recently.

> Stable 2.6.0-4

 I've sent a patch to the security team, I suppose it will soon be
 uploaded.

> Testing 2.14.4-2

 The security team seems to prefer waiting for the unstable fix to
 migrate to testing which will happen automatically in a couple of days.

> Unstable 2.14.4-3

 This version has the fix.

-- 
Loïc Minier <lool@dooz.org>



Bug marked as not found in version 2.14.4-3. Request was from Loïc Minier <lool@dooz.org> to control@bugs.debian.org. Full text and rfc822 format available.

Bug archived. Request was from Debbugs Internal Request <owner@bugs.debian.org> to internal_control@bugs.debian.org. (Sun, 24 Jun 2007 20:11:38 GMT) Full text and rfc822 format available.

Send a report that this bug log contains spam.


Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Sat Apr 19 03:03:09 2014; Machine Name: buxtehude.debian.org

Debian Bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.