EnGarde Secure Linux Security Advisory: PHP
| EnGarde Secure Linux is a secure distribution of Linux that features improved access control, host and network intrusion detection, Web based secure remote management, complete e-commerce using AllCommerce, and integrated open source security tools |
OVERVIEW
- --------
? There is a vulnerability in PHP's MIME data parsing code which may
? allow an attacker to execute arbitrary code as the web server user.
DETAIL
- ------
? Stefan Esser of the e-matters team has found several flaws in PHP's
? MIME parsing code, the code that is responsible for handling file
? uploads as per RFC1867.? If a server has file_uploads turned on in
? its php.ini then a remote attacker may execute arbitrary code
? as the web server user (webd).
? For more information on this bug please refer to the original advisory
? by e-matters and the recent follow-up advisory by CERT:
??? http://security.e-matters.de/advisories/012002.html
http://www.cert.org/advisories/CA-2002-05.html The Common Vulnerabilities and Exposures project (cve.mitre.org/) has
? assigned the name CAN-2002-0081 to this issue.
SOLUTION
- --------
? All users should upgrade to the most recent version as outlined in
? this advisory.
? Guardian Digital recently made available the Guardian Digital Secure
? Update, a means to proactively keep systems secure and manage
? system software. EnGarde users can automatically update their system
? using the Guardian Digital WebTool secure interface.
? If choosing to manually upgrade this package, updates can be
? obtained from:
??? ftp://ftp.engardelinux.org/pub/engarde/stable/updates/
http://ftp.engardelinux.org/pub/engarde/stable/updates/
Before upgrading the package, the machine must either:
??? a) be booted into a "standard" kernel; or
??? b) have LIDS disabled.
? To disable LIDS, execute the command:
??? # /sbin/lidsadm -S -- -LIDS_GLOBAL
? To install the updated package, execute the command:
??? # rpm -Uvh
You must now update the LIDS configuration by executing the command:
??? # /usr/sbin/config_lids.pl
? To re-enable LIDS (if it was disabled), execute the command:
??? # /sbin/lidsadm -S -- +LIDS_GLOBAL
? To verify the signatures of the updated packages, execute the command:
??? # rpm -Kv
UPDATED PACKAGES
- ----------------
? These updated packages are for EnGarde Secure Linux 1.0.1 (Finestra).
? Source Packages:
??? SRPMS/php-4.0.6-1.0.18.src.rpm
????? MD5 Sum:? e590a2f6b9c7e80e90b718e324a5f6ba
? Binary Packages:
??? i386/mod_php-4.0.6-1.0.18.i386.rpm
????? MD5 Sum:? bcc84d1f09d0c3ae0df569a5d918c37e
??? i386/php-4.0.6-1.0.18.i386.rpm
????? MD5 Sum:? 4d385118b7cbae08731b56f587ae97f2
??? i686/mod_php-4.0.6-1.0.18.i686.rpm
????? MD5 Sum:? 2b425ef98818857067512357c43f6234
??? i686/php-4.0.6-1.0.18.i686.rpm
????? MD5 Sum:? 1fc1cd3a39439bfb66cc63e6152d1ffc
REFERENCES
- ----------
? Guardian Digital's public key:
??? http://ftp.engardelinux.org/pub/engarde/ENGARDE-GPG-KEY
Credit for the discovery of this bug goes to:
??? Stefan Esser
PHP's Official Web Site:
??? http://www.php.net/
Security Contact:??? security@guardiandigital.com
EnGarde Advisories:? http://www.engardelinux.org/advisories.html
| | |
|
|
 Currently there are no Talkback posted on "EnGarde Secure Linux Security Advisory: PHP", Click here to be the first to post a talkback.
|
|
|
| |
