English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 148472 CVE descriptions
and 72306 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 --------------------------------------------------------------------------
   Turbolinux Security Advisory TLSA-2003-11
   http://www.turbolinux.co.jp/security/
                                             security-team@turbolinux.co.jp
 --------------------------------------------------------------------------

 Original released date : 27 Feb 2003
 Last revised           : 01 Apr 2003

 Package : zlib

 Summry : Format string vulnerability

 More information :
    Format string vulnerability is in function gzprintf() of zlib.

 Impact :
    The third party is able to execute arbitrary shell command.

 Affected Products :
    - Turbolinux 8 Server
    - Turbolinux 8 Workstation
    - Turbolinux 7 Server
    - Turbolinux 7 Workstation
    - Turbolinux Server 6.5
    - Turbolinux Advanced Server 6
    - Turbolinux Server 6.1
    - Turbolinux Workstation 6.0

 Solution :
    Please use turbopkg tool to apply the update.

    If you need to confirm the version of current installed
    package, please issue rpm command as :

    # rpm -qa | grep PACKAGE-NAME


 <Turbolinux 8 Server>

   Source Packages
   Size : MD5

   zlib-1.1.4-4.src.rpm
       189543 dd4870ab12e43ac1fbe7a624efb1f505

   Binary Packages
   Size : MD5

   zlib-1.1.4-4.i586.rpm
        44675 8d797746afadcfb5014484dbf0c948cf
   zlib-devel-1.1.4-4.i586.rpm
        43867 73dce94b03d9e2238465a9827d46b435

 <Turbolinux 8 Workstation>

   Source Packages
   Size : MD5

   zlib-1.1.4-4.src.rpm
       189543 28a6ebee921790c7d87b9e2c8f898cd0

   Binary Packages
   Size : MD5

   zlib-1.1.4-4.i586.rpm
        44660 12c37d5646fa6d6523ae838e253a6672
   zlib-devel-1.1.4-4.i586.rpm
        43841 5cdb61a4659f238d620882bac7537e3e

 <Turbolinux 7 Server>

   Source Packages
   Size : MD5

   zlib-1.1.4-4.src.rpm
       189543 8b02db61639f4753b70c039448aa731b

   Binary Packages
   Size : MD5

   zlib-1.1.4-4.i586.rpm
        43666 fd92ec4c5426074bc29387587291d271
   zlib-devel-1.1.4-4.i586.rpm
        42645 0061d60c6e1ea51d4b2f68017ca1a690

 <Turbolinux 7 Workstation>

   Source Packages
   Size : MD5

   zlib-1.1.4-4.src.rpm
       189543 8d2025e8021c4741dcc193eb513ff985

   Binary Packages
   Size : MD5

   zlib-1.1.4-4.i586.rpm
        43649 7f38214cc43fde02ffdbdf12ab559481
   zlib-devel-1.1.4-4.i586.rpm
        42685 a1b5f135e1f2ed10883abb9c6a355648

 <Turbolinux Server 6.5>

   Source Packages
   Size : MD5

   zlib-1.1.4-4.src.rpm
       189543 0a758d182a9fd14b0652471f0fb848fc

   Binary Packages
   Size : MD5

   zlib-1.1.4-4.i386.rpm
        44244 423f6991a4384287ceb5b68dd1dacd5d
   zlib-devel-1.1.4-4.i386.rpm
        44215 c20deb631acfb6cbfc2d78f7e7aa9c1f

 <Turbolinux Advanced Server 6>

   Source Packages
   Size : MD5

   zlib-1.1.4-4.src.rpm
       189543 90c84d489a8b076bc0aaf6e34bf28bca

   Binary Packages
   Size : MD5

   zlib-1.1.4-4.i386.rpm
        44223 f227d5026485eed3d2272ed66db6e986
   zlib-devel-1.1.4-4.i386.rpm
        44201 0625faa61f8c620263eac640acb98bcc

 <Turbolinux Server 6.1>

   Source Packages
   Size : MD5

   zlib-1.1.4-4.src.rpm
       189543 c44848d4ee12cee17a53df23b0d63352

   Binary Packages
   Size : MD5

   zlib-1.1.4-4.i386.rpm
        44244 29d5c8d83d03d4cf858093b8662f9bbc
   zlib-devel-1.1.4-4.i386.rpm
        44212 da4e7cc05ad1941f31effa828d52a2d8

 <Turbolinux Workstation 6.0>

   Source Packages
   Size : MD5

   zlib-1.1.4-4.src.rpm
       189543 49bdf88bc35147a63a4b28e1b3af6fca

   Binary Packages
   Size : MD5

   zlib-1.1.4-4.i386.rpm
        44243 e1193fbca3f3df67dda3e351df0553a2
   zlib-devel-1.1.4-4.i386.rpm
        44215 69bbe62a2da1cc4be1d93b28c7385386


 References :

 CVE
   [CAN-2003-0107]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0107


 --------------------------------------------------------------------------
 Revision History
    27 Feb 2003 Initial release
    05 Mar 2003 added References
    01 Apr 2003 modifyed file size
 --------------------------------------------------------------------------

 Copyright(C) 2003 Turbolinux, Inc. All rights reserved. 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQE+iVrHK0LzjOqIJMwRAmC+AJ9QriBcqdt3+6Zy/V6lFJ+GPiZL3ACgg9tL
zSuJFOYzYK7HYpFLRoeh03A=
=r0Gf
-----END PGP SIGNATURE-----

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Developer APIs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe

© 1998-2019 E-Soft Inc. All rights reserved.