NetWinder.org - NetWinder security advisory Page

NAVIGATION

About
News
Support

Downloads
- Search
- Mirrors
- Auto update

Documentation
- FAQ
- HOWTOs
- ARM info
- Crusoe info

Development
- Toolchain
- Autobuild
- Users

Sponsored by:

NetWinder security advisory

ID	2000-007
Issued	2000-Apr-07
Package	gpm
Summary	gpm potential root compromize
Category	Design error
Severity	Medium (local root compromise)
Products	Developer dm-3.1-15 and earlier
	OfficeServer os-1.5-4 and earlier

DESCRIPTION

The "gpm" package includes a "gpm-root" component which fails to drop its gid root privileges when it executes user commands. "gpm" is a mouse driver for the console, allowing users to cut-and-paste and run commands. A local user could configure their "gpm" instance to launch arbitrary programs with gid of root.

SOLUTION

Download the following RPM packages to the NetWinder into a temporary directory, then install them with the command "rpm -Uvh *.rpm". Be sure there are no other files ending in ".rpm" in the temporary directory. See http://www.netwinder.org/security/install.html for more help.

Required packages

http://www.netwinder.org/updates/3.1-15/armv4l/gpm-1.19.1-1.armv4l.rpm

Optional packages

http://www.netwinder.org/updates/3.1-15/armv4l/gpm-devel-1.19.1-1.armv4l.rpm
http://www.netwinder.org/updates/3.1-15/SRPMS/gpm-1.19.1-1.src.rpm

REFERENCES

http://www.redhat.com/support/errata/RHSA-2000009-02.html
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000322182143.4498.qmail@securityfocus.com