Original released date : 28 May 2004
Last revised : 28 May 2004
Package : cvs
Summary : Two issues have been discovered in cvs
More information :
CVS is a front end to the rcs(1) revision control system which extends
the notion of revision control from a collection of files in a single
directory to a hierarchical collection of directories consisting of
revision controlled files.
- The client for CVS allows a remote malicious CVS server to create arbitrary files using
certain RCS diff files that use absolute pathnames during checkouts or updates.
- CVS contains a flaw when deciding if a CVS entry line should get a modified or unchanged flag attached.
This results in a heap overflow which can be exploited to execute arbitrary code on the CVS server.
This vulnerability may allow attackers to cause the CVS server to create directories or
files in your system.
An attacker that has access to a CVS server could use this flaw to execute arbitrary code
under the UID which the CVS server is executing.
Affected Products :
- Turbolinux Appliance Server 1.0 Hosting Edition
- Turbolinux Appliance Server 1.0 Workgroup Edition
- Turbolinux 10 Desktop
- Turbolinux 8 Server
- Turbolinux 8 Workstation
- Turbolinux 7 Server
- Turbolinux 7 Workstation
- Turbolinux Server 6.5
- Turbolinux Advanced Server 6
- Turbolinux Server 6.1
- Turbolinux Workstation 6.0
Please use the turbopkg (zabom) tool to apply the update.
[Turbolinux 10 Desktop]
# zabom --update cvs