[gentoo-announce] [ GLSA 201310-16 ] TPTEST: Arbitrary code execution - gentoo-announce

From:	Sergey Popov <pinkbyte@g.o>
To:	gentoo-announce@g.o
Subject:	[gentoo-announce] [ GLSA 201310-16 ] TPTEST: Arbitrary code execution
Date:	Sat, 26 Oct 2013 20:48:49
Message-Id:	`526C2A0A.7010001@gentoo.org`

1

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

2

Gentoo Linux Security Advisory                           GLSA 201310-16

3

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

4

                                            http://security.gentoo.org/

5

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

6

7

 Severity: Normal

8

    Title: TPTEST: Arbitrary code execution

9

     Date: October 26, 2013

10

     Bugs: #261191

11

       ID: 201310-16

12

13

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

14

15

Synopsis

16

========

17

18

Two buffer overflow vulnerabilities in TPTEST may allow remote

19

attackers to execute arbitrary code or cause Denial of Service.

20

21

Background

22

==========

23

24

TPTEST is a tool to measure the speed of a user's Internet connection.

25

26

Affected packages

27

=================

28

29

    -------------------------------------------------------------------

30

     Package              /     Vulnerable     /            Unaffected

31

    -------------------------------------------------------------------

32

  1  net-analyzer/tptest         < 3.1.7-r2               >= 3.1.7-r2

33

34

Description

35

===========

36

37

The GetStatsFromLine() function in TPTEST is vulnerable to buffer

38

overflows from STATS lines with long email and pwd fields.

39

40

Impact

41

======

42

43

A remote attacker could send a specially-crafted STATS line, possibly

44

resulting in arbitrary code execution or a Denial of Service condition.

45

46

Workaround

47

==========

48

49

There is no known workaround at this time.

50

51

Resolution

52

==========

53

54

All TPTEST users should upgrade to the latest version:

55

56

  # emerge --sync

57

  # emerge --ask --oneshot --verbose ">=net-analyzer/tptest-3.1.7-r2"

58

59

References

60

==========

61

62

[ 1 ] CVE-2009-0650

63

      http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0650

64

[ 2 ] CVE-2009-0659

65

      http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0659

66

67

Availability

68

============

69

70

This GLSA and any updates to it are available for viewing at

71

the Gentoo Security Website:

72

73

 http://security.gentoo.org/glsa/glsa-201310-16.xml

74

75

Concerns?

76

=========

77

78

Security is a primary focus of Gentoo Linux and ensuring the

79

confidentiality and security of our users' machines is of utmost

80

importance to us. Any security concerns should be addressed to

81

security@g.o or alternatively, you may file a bug at

82

https://bugs.gentoo.org.

83

84

License

85

=======

86

87

Copyright 2013 Gentoo Foundation, Inc; referenced text

88

belongs to its owner(s).

89

90

The contents of this document are licensed under the

91

Creative Commons - Attribution / Share Alike license.

92

93

http://creativecommons.org/licenses/by-sa/2.5

Gentoo Archives: gentoo-announce

Attachments

1	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2	Gentoo Linux Security Advisory GLSA 201310-16
3	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
4	http://security.gentoo.org/
5	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
6
7	Severity: Normal
8	Title: TPTEST: Arbitrary code execution
9	Date: October 26, 2013
10	Bugs: #261191
11	ID: 201310-16
12
13	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
14
15	Synopsis
16	========
17
18	Two buffer overflow vulnerabilities in TPTEST may allow remote
19	attackers to execute arbitrary code or cause Denial of Service.
20
21	Background
22	==========
23
24	TPTEST is a tool to measure the speed of a user's Internet connection.
25
26	Affected packages
27	=================
28
29	-------------------------------------------------------------------
30	Package / Vulnerable / Unaffected
31	-------------------------------------------------------------------
32	1 net-analyzer/tptest < 3.1.7-r2 >= 3.1.7-r2
33
34	Description
35	===========
36
37	The GetStatsFromLine() function in TPTEST is vulnerable to buffer
38	overflows from STATS lines with long email and pwd fields.
39
40	Impact
41	======
42
43	A remote attacker could send a specially-crafted STATS line, possibly
44	resulting in arbitrary code execution or a Denial of Service condition.
45
46	Workaround
47	==========
48
49	There is no known workaround at this time.
50
51	Resolution
52	==========
53
54	All TPTEST users should upgrade to the latest version:
55
56	# emerge --sync
57	# emerge --ask --oneshot --verbose ">=net-analyzer/tptest-3.1.7-r2"
58
59	References
60	==========
61
62	[ 1 ] CVE-2009-0650
63	http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0650
64	[ 2 ] CVE-2009-0659
65	http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0659
66
67	Availability
68	============
69
70	This GLSA and any updates to it are available for viewing at
71	the Gentoo Security Website:
72
73	http://security.gentoo.org/glsa/glsa-201310-16.xml
74
75	Concerns?
76	=========
77
78	Security is a primary focus of Gentoo Linux and ensuring the
79	confidentiality and security of our users' machines is of utmost
80	importance to us. Any security concerns should be addressed to
81	security@g.o or alternatively, you may file a bug at
82	https://bugs.gentoo.org.
83
84	License
85	=======
86
87	Copyright 2013 Gentoo Foundation, Inc; referenced text
88	belongs to its owner(s).
89
90	The contents of this document are licensed under the
91	Creative Commons - Attribution / Share Alike license.
92
93	http://creativecommons.org/licenses/by-sa/2.5