Your message dated Fri, 29 Oct 2010 19:32:07 +0000
with message-id <e1pbugj-0008va...@franck.debian.org>
and subject line Bug#598305: fixed in teamspeak-server 2.0.24.1+debian-1.1
has caused the Debian Bug report #598305,
regarding teamspeak-server: CVE-2010-3383: insecure library loading
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
598305: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598305
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: teamspeak-server
Version: 2.0.24.1+debian-1
Severity: grave
Tags: security
User: t...@security.debian.org
Usertags: ldpath
Hello,
During a review of the Debian archive, I've found your package to
contain a script that can be abused by an attacker to execute arbitrary
code.
The vulnerability is introduced by an insecure change to
LD_LIBRARY_PATH, and environment variable used by ld.so(8) to look for
libraries on a directory other than the standard paths.
Vulnerable code follows:
/usr/bin/teamspeak-server line 5:
export LD_LIBRARY_PATH=/usr/lib/teamspeak-server:$LD_LIBRARY_PATH
When there's an empty item on the colon-separated list of
LD_LIBRARY_PATH, ld.so treats it as '.' (i.e. CWD/$PWD.)
If the given script is executed from a directory where a potential,
local, attacker can write files to, there's a chance to exploit this
bug.
This vulnerability has been assigned the CVE id CVE-2010-3383. Please make sure
you mention it when forwarding this report to upstream and when fixing
this bug (everywhere: upstream and here at Debian.)
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3383
[1] http://security-tracker.debian.org/tracker/CVE-2010-3383
Sincerely,
Raphael Geissert
--- End Message ---
--- Begin Message ---
Source: teamspeak-server
Source-Version: 2.0.24.1+debian-1.1
We believe that the bug you reported is fixed in the latest version of
teamspeak-server, which is due to be installed in the Debian FTP archive:
teamspeak-server_2.0.24.1+debian-1.1.diff.gz
to non-free/t/teamspeak-server/teamspeak-server_2.0.24.1+debian-1.1.diff.gz
teamspeak-server_2.0.24.1+debian-1.1.dsc
to non-free/t/teamspeak-server/teamspeak-server_2.0.24.1+debian-1.1.dsc
teamspeak-server_2.0.24.1+debian-1.1_i386.deb
to non-free/t/teamspeak-server/teamspeak-server_2.0.24.1+debian-1.1_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 598...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Etienne Millon <etienne.mil...@gmail.com> (supplier of updated teamspeak-server
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sun, 24 Oct 2010 20:02:31 +0200
Source: teamspeak-server
Binary: teamspeak-server
Architecture: source i386
Version: 2.0.24.1+debian-1.1
Distribution: unstable
Urgency: high
Maintainer: Adam Cécile (Le_Vert) <gand...@le-vert.net>
Changed-By: Etienne Millon <etienne.mil...@gmail.com>
Description:
teamspeak-server - VoIP chat for online gaming (server)
Closes: 598305
Changes:
teamspeak-server (2.0.24.1+debian-1.1) unstable; urgency=high
.
* Non-maintainer upload.
* debian/teamspeak-server.wrapper
- Fix security issue CVE-2010-3383 (grave, security; Closes: #598305)
- Proper quoting of "$@" (thanks to Jari Aalto <jari.aa...@cante.net>)
Checksums-Sha1:
a83796adb6e5662b9b2faa95964146d113a05b0c 1794
teamspeak-server_2.0.24.1+debian-1.1.dsc
a4079d43648673ffef78f71538e0bd61716da6f3 15495
teamspeak-server_2.0.24.1+debian-1.1.diff.gz
23a5a98617d98ceff90b976282a5b1292c127064 1097688
teamspeak-server_2.0.24.1+debian-1.1_i386.deb
Checksums-Sha256:
ee7247092104822ad63330c94b16c03c507a7ed66265a089bbf0e7a1d9c9ed40 1794
teamspeak-server_2.0.24.1+debian-1.1.dsc
bdafee076bfecfb6f5da0f0b7b431cdc9dd625a7cec18b0e4c6c1bf4fe389061 15495
teamspeak-server_2.0.24.1+debian-1.1.diff.gz
b726e54c8752567124c2fae2138a258f66f0412fd17ff285c08a7bdb59c5e754 1097688
teamspeak-server_2.0.24.1+debian-1.1_i386.deb
Files:
71563fbfcb19b1a3435bddda2c6fe842 1794 non-free/net optional
teamspeak-server_2.0.24.1+debian-1.1.dsc
d00f33517ad0c28ecd9fdb6ca8c48dae 15495 non-free/net optional
teamspeak-server_2.0.24.1+debian-1.1.diff.gz
ffd9ae551f87916bbb26ba30cff893e3 1097688 non-free/net optional
teamspeak-server_2.0.24.1+debian-1.1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iQIcBAEBCAAGBQJMxIOMAAoJECHSBYmXSz6WppYP/j5YZSDcHqEszGokvw3Kyot4
RYtA3KPmzkIJMLKe/vQfMYMTVZnhR0heztbcMqnD3osLmSIxOu8QWJRTepqD0492
axtAnMls+d8MuS7LZVR7/ON39bSpOJO9gg/OkZ5y+3zA9/bAgivdkIjrnR6jJsFx
HJlm0QbKhBgkAd/oXol4Dgt3lrM6aAivRR13SaIYVUkirhx+hMe7zZSeq4H2NgLb
i2NkGkgypZbR8gktzyzwJGoxeo7faCm+xbwMCnzWrGMPlC01EkbBtsFwQcS7tIj3
l/C52jEO1h0t593F6XmolIc+tnQFHHr/CeyLsZPt64L8iGg0h+QvpbyLf+xi9nZL
yfc0p10mTZTOdF8sEEcRP+Z4iERo1WD7Vs6mAjb1qczUagoSWaN4IEaBlp2xMJFi
BDmPIeBz5kKdvLsLNXoKXNGegKX9yQ6zqC0saA909qobl6gVEB7J16OCLHkIY2p9
2RgKxMmpJTIHrZetWM0aNP+hT6Dk5eksW90L54hqHWeYK1BQErALXcL5Ssu2Kid5
OwBQdTYMjpDJnCs1hih2WKhYL8SbJZ+l8XFyltL0RLQtnwmJhighVt2VBDsYX1iO
cbji+cX7Kx8HnG+tFdj3h09W4ML0GS1muEytmwC71PPk0ZNJy3Ca0mgi8yuZlZYh
CBzyl5f1fE8btIMhD8Uv
=sypF
-----END PGP SIGNATURE-----
--- End Message ---
