[23630] in bugtraq
Re: Remote Root Hole in FreeBSD Ports
daemon@ATHENA.MIT.EDU (Horms)
Thu Dec 27 11:37:58 2001
Date: Thu, 27 Dec 2001 13:41:46 +1100
From: Horms <horms@vergenet.net>
To: bugtraq <bugtraq@bugtraq.org>
Cc: bugtraq@securityfocus.com, vulnwatch@vulnwatch.org
Message-ID: <20011227024139.GA8638@verge.net.au>
Mail-Followup-To: bugtraq <bugtraq@bugtraq.org>,
bugtraq@securityfocus.com, vulnwatch@vulnwatch.org
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
protocol="application/pgp-signature"; boundary="gBBFr7Ir9EOA20Yy"
Content-Disposition: inline
In-Reply-To: <20011226012625.12878.qmail@tsunami.stormhosting.com>
--gBBFr7Ir9EOA20Yy
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
This notice is in reference to a reported root hole in the FreeBSD port of
perdition and more specifically the library vanessa_logger that it=20
requires.
http://www.securityfocus.org/archive/1/247148
First I would like to express great dismay that this was published on a=20
public list (BugTraq) without prior consultation with the author (myself)=
=20
or to my knowledge the maintainer of the FreeBSD port, Konstantinos=20
Konstantinidis.
There is a string format bug in vanessa_logger 0.0.1 which is what the post
to BugTraq makes reference to. FreeBSD, was at the time of the posting=20
shipping this vulnerable version.
vanessa_logger 0.0.2, released on the 29th of June 2001, is not vulnerable
to this exploit. FreeBSD have released a patched version of vanessa_logger
0.0.1 which is also not vulnerable. Users should upgrade to either of=20
these.
vanessa_logger 0.0.2 is available from
ftp://ftp.vergenet.net/pub/vanessa/vanessa_logger/0.0.2
At this time I would also like to highlight the importance of running
perdition as a non-root user. The --username and --group options enable
perdition to run as non-root for most of a processes life. If these options
are used then the potential risk from any exploits stemming from the string
format bug in vanessa_logger are significantly reduced.
For more information on perdition please see=20
http://vergenet.net/linux/perdition/
--=20
Horms
Author of perdition and vanessa_logger
--gBBFr7Ir9EOA20Yy
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE8Kopjdu+M6Iexz7URAn6qAJsHSurQXkQqFlRkz8YKH93gN3IHbACgvhlr
397tlOL+J/kMcZYx41Ns9UA=
=ukWx
-----END PGP SIGNATURE-----
--gBBFr7Ir9EOA20Yy--
