Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

harden your servers ladies & gentlemen !
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
kernelOfTruth
Watchman
Watchman


Joined: 20 Dec 2005
Posts: 6111
Location: Vienna, Austria; Germany; hello world :)
PostPosted: Thu Oct 07, 2010 10:48 am    Post subject: harden your servers ladies & gentlemen ! Reply with quote
Quote:
Topic : Multiple Vendors libc/glob(3) resource exhaustion (+0day remote ftpd-anon)
SecurityAlert : 7822
CVE : CVE-2010-2632
SecurityRisk : Medium (About)
Remote Exploit : Yes
Local Exploit : Yes
Exploit Available : Yes
Credit : Maksymilian Arciemowicz
Published : 07.10.2010

Affected Software :
OpenBSD 4.7
NetBSD 5.0.2
FreeBSD 7.3/8.1
Oracle Sun Solaris 10
GNU Libc (glibc)


http://securityreason.com/securityalert/7822
_________________
https://github.com/kernelOfTruth/ZFS-for-SystemRescueCD/tree/ZFS-for-SysRescCD-4.9.0
https://github.com/kernelOfTruth/pulseaudio-equalizer-ladspa

Hardcore Gentoo Linux user since 2004 :D
Back to top
View user's profile Send private message
Letharion
Veteran
Veteran


Joined: 13 Jun 2005
Posts: 1344
Location: Sweden
PostPosted: Mon Oct 11, 2010 3:27 pm    Post subject: Reply with quote
Hopefully
Code:
Date:
- - Dis.: 06.11.2009
- - Pub.: 07.10.2010

means that the problem is long since fixed in glibc?
Back to top
View user's profile Send private message
kernelOfTruth
Watchman
Watchman


Joined: 20 Dec 2005
Posts: 6111
Location: Vienna, Austria; Germany; hello world :)
PostPosted: Mon Oct 11, 2010 4:48 pm    Post subject: Reply with quote
Letharion wrote:
Hopefully
Code:
Date:
- - Dis.: 06.11.2009
- - Pub.: 07.10.2010

means that the problem is long since fixed in glibc?


are you sure ?

Quote:
The NetBSD developers have released a separate advisory about the problem and advise server operators not to offer (S)FTP or to retrieve the corrected code from the CVS repository and recompile. No other vendor has, so far, released an official report suggesting patches or workarounds.


http://www.h-online.com/open/news/item/Flaw-in-libc-implementation-threatens-FTP-servers-1103319.html
_________________
https://github.com/kernelOfTruth/ZFS-for-SystemRescueCD/tree/ZFS-for-SysRescCD-4.9.0
https://github.com/kernelOfTruth/pulseaudio-equalizer-ladspa

Hardcore Gentoo Linux user since 2004 :D
Back to top
View user's profile Send private message
Etal
Veteran
Veteran


Joined: 15 Jul 2005
Posts: 1932
PostPosted: Mon Oct 11, 2010 4:53 pm    Post subject: Reply with quote
I couldn't reproduce this with vsftpd (compex exressions like "stat */*" don't return anything), so at least my ftp server is safe.
Back to top
View user's profile Send private message
kernelOfTruth
Watchman
Watchman


Joined: 20 Dec 2005
Posts: 6111
Location: Vienna, Austria; Germany; hello world :)
PostPosted: Mon Oct 11, 2010 5:03 pm    Post subject: Reply with quote
Etal wrote:
I couldn't reproduce this with vsftpd (compex exressions like "stat */*" don't return anything), so at least my ftp server is safe.


you run hardened ?

FYI: there's a bug-report now at b.g.o.:

--------------------------------------------------------


edit:

OK - there's another one:

https://bugs.gentoo.org/show_bug.cgi?id=340061
_________________
https://github.com/kernelOfTruth/ZFS-for-SystemRescueCD/tree/ZFS-for-SysRescCD-4.9.0
https://github.com/kernelOfTruth/pulseaudio-equalizer-ladspa

Hardcore Gentoo Linux user since 2004 :D

Last edited by kernelOfTruth on Mon Oct 11, 2010 5:30 pm; edited 1 time in total
Back to top
View user's profile Send private message
Etal
Veteran
Veteran


Joined: 15 Jul 2005
Posts: 1932
PostPosted: Mon Oct 11, 2010 5:20 pm    Post subject: Reply with quote
No, it probably just does not use glob.

Code:
$ telnet xxxxx 21
Trying XX.XX.XX.XX...
Connected to xxxxx.
Escape character is '^]'.
220 (vsFTPd 2.3.2)
user ftp
331 Please specify the password.
pass hello
230 Login successful.
stat */*
213-Status follows:
213 End of status


You can try it on ftp://ftp.redhat.com (which supposedly runs vsftpd) and compare it to ftp.openbsd.org (which doesn't) :P
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy