[USN-589-1] unzip vulnerability
Ubuntu Security Notice USN-589-1 March 20, 2008 unzip vulnerability CVE-2008-0888Kwetsbare Ubuntu versies:
Ubuntu 6.06 LTS
Ubuntu 6.10
Ubuntu 7.04
Ubuntu 7.10
- Ubuntu 6.06 LTS
- unzip 5.52-6ubuntu4.1
- Ubuntu 6.10
- unzip 5.52-8ubuntu1.1
- Ubuntu 7.10
- unzip 5.52-10ubuntu1.1
- Ubuntu 7.04
- unzip 5.52-9ubuntu3.1
In general, a standard system upgrade is sufficient to effect the necessary changes.
Tavis Ormandy discovered that unzip did not correctly clean up pointers. If a user or automated service was tricked into processing a specially crafted ZIP archive, a remote attacker could execute arbitrary code with user privileges.
Ubuntero van de maand - Mei 2008 - Laacque
01-05-2008
Ooievaar brengt “Ruige Reiger”!
24-04-2008
Hardy Release Parties 2008
15-04-2008
Ubuntu demonstratie 19 april a.s. in Apeldoorn
10-04-2008
Ubuntero van de maand - April 2008 - Eendje
02-04-2008
Onverwachte downtime
01-04-2008
Nu ook chatten via de ubuntu NL website
30-03-2008
Ubuntero van de maand - Maart 2008 - profoX
01-03-2008
Ubuntero van de maand - Februari 2008 - Gandyman
03-02-2008
Ubuntero van de maand - Januari 2008
03-01-2008
Lees het nieuws via RSS