TITLE: SUSE update for pwdutils/shadow SECUNIA ADVISORY ID: SA17469 VERIFY ADVISORY: http://secunia.com/advisories/17469/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system OPERATING SYSTEM: UnitedLinux 1.0 http://secunia.com/product/2003/ SUSE Linux Enterprise Server 9 http://secunia.com/product/4118/ SuSE Linux Enterprise Server 8 http://secunia.com/product/1171/ SuSE Linux Desktop 1.x http://secunia.com/product/2002/ SUSE Linux 9.3 http://secunia.com/product/4933/ SUSE Linux 9.2 http://secunia.com/product/4258/ SuSE Linux 9.1 http://secunia.com/product/3473/ SuSE Linux 9.0 http://secunia.com/product/2467/ DESCRIPTION: SUSE has issued updates for pwdutils and shadow. These fix a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. The vulnerability is caused due to an error in the setuid "chfn" program in validating its arguments when changing the GECOS field. This can be exploited by malicious users to gain root privileges. SOLUTION: Apply updated packages. -- x86 Platform -- SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/pwdutils-2.6.96-4.2.i586.rpm 4705772232599de3a2d9dc83c922ee47 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/pwdutils-2.6.90-6.2.i586.rpm aae77d1eab9d617be89ab993f9f8a47d SUSE LINUX 9.1: ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/pwdutils-2.6.4-2.18.3.i586.rpm 5e957e0370ac82874979e0c02187517e SuSE Linux 9.0: ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/shadow-4.0.3-267.i586.rpm 8cf127c4d2e74f17cf0ff058f4feaf00 -- x86-64 Platform -- SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/pwdutils-2.6.96-4.2.x86_64.rpm 785543d9276bd5de611ce0e82bc3c066 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/pwdutils-2.6.90-6.2.x86_64.rpm 82b384b4d65189c2af84677d7fc02dba SUSE LINUX 9.1: ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/pwdutils-2.6.4-2.18.3.x86_64.rpm f5d860c203d8dc5c6b85318229fe68d8 SuSE Linux 9.0: ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/shadow-4.0.3-267.x86_64.rpm 384136f520ebf09d3be779291da92c8d -- Sources -- SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/pwdutils-2.6.96-4.2.src.rpm cb0d28c88ecf013418234ed39ff87e85 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/pwdutils-2.6.90-6.2.src.rpm e8854e2433279f4a2650d354a07f3605 SUSE LINUX 9.1: ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/pwdutils-2.6.4-2.18.3.src.rpm 81453f140a633eeb0b0a841b857e49a5 ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/pwdutils-2.6.4-2.18.3.src.rpm 7f5d161dae57bf1fb64cd39269b5255c SuSE Linux 9.0: ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/shadow-4.0.3-267.src.rpm 6cc9c84bdea5f04c290c55c942327bb0 ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/src/shadow-4.0.3-267.src.rpm d463b528a727655b392230302d998976 PROVIDED AND/OR DISCOVERED BY: The vendor credits Thomas Gerisch. ORIGINAL ADVISORY: http://lists.suse.com/archive/suse-security-announce/2005-Nov/0002.html ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------