Your message dated Fri, 02 Jun 2006 14:37:33 -0700
with message-id <[EMAIL PROTECTED]>
and subject line Bug#359745: fixed in webalizer 2.01.10-29
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: webalizer
Version: 2.01.10-26
Severity: critical
Justification: root security hole
I have identified a symlink vulnerability in Webalizer, which potentially
allows an unprivileged user to cause a root-owned file to be overwritten. The
vulnerability occurs if the user has write permission to the directory into
which Webalizer will write its output, and Webalizer is run as a more
privileged user (e.g. as root, from a system-wide cron job); a user can
create a symlink from any of the filenames Webalizer writes (e.g. index.html)
to any other file on the system, and Webalizer will write to the symlink's
target.
The attacker may also have some control over the contents with which the
symlink's target will be overwritten, by making specially-crafted HTTP
requests which will be written into the log file being parsed; some of the
HTML files output by Webalizer contain strings pulled from the input log file.
-- System Information:
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.6.8-2-686-smp
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Versions of packages webalizer depends on:
ii debconf 1.4.30.13 Debian configuration management sy
ii libc6 2.3.2.ds1-22 GNU C Library: Shared libraries an
ii libdb4.2 4.2.52-18 Berkeley v4.2 Database Libraries [
ii libgd2-xpm 2.0.33-1.1 GD Graphics Library version 2
ii libpng12-0 1.2.8rel-1 PNG library - runtime
ii zlib1g 1:1.2.2-4.sarge.2 compression library - runtime
-- debconf information excluded
--- End Message ---
--- Begin Message ---
Source: webalizer
Source-Version: 2.01.10-29
We believe that the bug you reported is fixed in the latest version of
webalizer, which is due to be installed in the Debian FTP archive:
webalizer_2.01.10-29.diff.gz
to pool/main/w/webalizer/webalizer_2.01.10-29.diff.gz
webalizer_2.01.10-29.dsc
to pool/main/w/webalizer/webalizer_2.01.10-29.dsc
webalizer_2.01.10-29_i386.deb
to pool/main/w/webalizer/webalizer_2.01.10-29_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Jose Carlos Medeiros <[EMAIL PROTECTED]> (supplier of updated webalizer package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 2 Jun 2006 15:35:35 -0300
Source: webalizer
Binary: webalizer
Architecture: source i386
Version: 2.01.10-29
Distribution: unstable
Urgency: low
Maintainer: Jose Carlos Medeiros <[EMAIL PROTECTED]>
Changed-By: Jose Carlos Medeiros <[EMAIL PROTECTED]>
Description:
webalizer - Web server log analysis program
Closes: 359745
Changes:
webalizer (2.01.10-29) unstable; urgency=low
.
* Solved "symlink vulnerability", Thanks to Julien Danjou <[EMAIL
PROTECTED]>.
(Closes: #359745)
Files:
98a2c86b7bc235f03afdd0e5e5ab08bb 784 web optional webalizer_2.01.10-29.dsc
645dbcfcf7ece02ffee6f0e3fe4a6a52 205006 web optional
webalizer_2.01.10-29.diff.gz
b32152e1d2ebdeb851c21c966e90f60e 311892 web optional
webalizer_2.01.10-29_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFEgKajGKGxzw/lPdkRAqiCAKCR3SmXhNzEFAYOUxmorwpmr6OBUwCeL8kC
7oLN0ODZz9k6y2E9PzEXTjk=
=EdbO
-----END PGP SIGNATURE-----
--- End Message ---
