TITLE:
Debian update for libapache-auth-ldap

SECUNIA ADVISORY ID:
SA18568

VERIFY ADVISORY:
http://secunia.com/advisories/18568/

CRITICAL:
Highly critical

IMPACT:
System access

WHERE:
>From remote

OPERATING SYSTEM:
Debian GNU/Linux 3.0
http://secunia.com/product/143/
Debian GNU/Linux 3.1
http://secunia.com/product/5307/

DESCRIPTION:
Debian has issued an update for libapache-auth-ldap. This fixes a
vulnerability, which can be exploited by malicious people to
compromise a vulnerable system.

For more information:
SA18382

SOLUTION:
Apply updated packages.

-- Debian GNU/Linux 3.0 alias woody --

Source archives:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-3.1.dsc
Size/MD5 checksum: 652 6ef1d9323674ef6a5f076b3b65ccf60e
http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-3.1.diff.gz
Size/MD5 checksum: 3927 e8197f2db55a7c9e570ee5f72bc3ff39
http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0.orig.tar.gz
Size/MD5 checksum: 79058 de283639b40e3f359ad6e4a65cad1813

Alpha architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-3.1_alpha.deb
Size/MD5 checksum: 71528 46f26f6c68fa1e900e7c3b4b6f65e83c

ARM architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-3.1_arm.deb
Size/MD5 checksum: 69554 59ed4e025245a4b2397530f165d7a20e

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-3.1_i386.deb
Size/MD5 checksum: 68958 1bded30a2554d58d8a856e61477b42ba

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-3.1_ia64.deb
Size/MD5 checksum: 75804 a7af3cc2e12376a386659e118064efb3

HP Precision architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-3.1_hppa.deb
Size/MD5 checksum: 71264 4ee43bc263b35ec2dd199bfde43d890d

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-3.1_m68k.deb
Size/MD5 checksum: 69354 ade63074b9f3ff1c6f46ff19262ecf2d

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-3.1_mips.deb
Size/MD5 checksum: 68724 2ffc67d01923a581918344100a8461ae

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-3.1_mipsel.deb
Size/MD5 checksum: 68656 e69c65426f6d102e2da0fa204e8a3b59

PowerPC architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-3.1_powerpc.deb
Size/MD5 checksum: 70020 920814cda6c57190e68160c087b76bea

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-3.1_s390.deb
Size/MD5 checksum: 69386 c74da92420df9b49c48f3bd6487d8579

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-3.1_sparc.deb
Size/MD5 checksum: 72126 6c28b218349faffe5a8789315b41d212

-- Debian GNU/Linux 3.1 alias sarge --

Source archives:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1.dsc
Size/MD5 checksum: 672 823af0881e3fc9ecaaf4ec4de445a2a1
http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1.diff.gz
Size/MD5 checksum: 5015 f3d65a99091bb695e9cdeb6f27c28a1b
http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0.orig.tar.gz
Size/MD5 checksum: 79058 de283639b40e3f359ad6e4a65cad1813

Alpha architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1_alpha.deb
Size/MD5 checksum: 71318 fd007ba23080c94b621351ea8d4c3e2d

AMD64 architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1_amd64.deb
Size/MD5 checksum: 70800 f056405e0dd083eba4e1a97ee972be10

ARM architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1_arm.deb
Size/MD5 checksum: 69298 a6475d8a98ca1687d30367b24fdcdee6

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1_i386.deb
Size/MD5 checksum: 69192 ddce8c4e7958dac6dd637f210f3690ea

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1_ia64.deb
Size/MD5 checksum: 74662 07480ce393dfe2c820cdfed1e09c3fad

HP Precision architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1_hppa.deb
Size/MD5 checksum: 71836 ffb117f0c3b8ca64181509172717441e

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1_m68k.deb
Size/MD5 checksum: 69592 2d2436f78415a7032b7724ffc94711f2

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1_mips.deb
Size/MD5 checksum: 69240 93eeb7ec212188e9fc66a38100ae0fb2

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1_mipsel.deb
Size/MD5 checksum: 69142 e5d3c43b616478ffea76c6708726436e

PowerPC architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1_powerpc.deb
Size/MD5 checksum: 71252 81e2369976e82a79babf4efd10a9c903

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1_s390.deb
Size/MD5 checksum: 70750 3fef60cf062e9f28ef8d3a85ef43ca91

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/liba/libapache-auth-ldap/libapache-auth-ldap_1.6.0-8.1_sparc.deb
Size/MD5 checksum: 69736 fe571fe5a8d149fd8a33e00e95ef9408

ORIGINAL ADVISORY:
http://www.debian.org/security/2006/dsa-952

OTHER REFERENCES:
SA18382:
http://secunia.com/advisories/18382/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------