Linux-Mandrake MandrakeUpdate Race Condition Vulnerability
BID:1567
Info
Linux-Mandrake MandrakeUpdate Race Condition Vulnerability
| Bugtraq ID: | 1567 |
| Class: | Race Condition Error |
| CVE: | |
| Remote: | Unknown |
| Local: | Yes |
| Published: | Aug 12 2000 12:00AM |
| Updated: | Aug 12 2000 12:00AM |
| Credit: | Disclosed in a security advisory by Linux-Mandrake (Advisory ID:MDKSA-2000:034) |
| Vulnerable: |
Mandriva Linux Mandrake 7.1 Mandriva Linux Mandrake 7.0 Mandriva Linux Mandrake 6.1 Mandriva Linux Mandrake 6.0 |
| Not Vulnerable: | |
Discussion
Linux-Mandrake MandrakeUpdate Race Condition Vulnerability
From the Mandrake advisory:
There is a possible race condition in MandrakeUpdate that has the potential for users to tamper with RPMs downloaded by MandrakeUpdate prior to them being installed. This is due to files being stored in the /tmp directory. This is a very low security-risk as most servers that provide user logins shouldn't be using MandrakeUpdate. These updated versions provide a fix for the problem by using /root/tmp instead of /tmp.
From the Mandrake advisory:
There is a possible race condition in MandrakeUpdate that has the potential for users to tamper with RPMs downloaded by MandrakeUpdate prior to them being installed. This is due to files being stored in the /tmp directory. This is a very low security-risk as most servers that provide user logins shouldn't be using MandrakeUpdate. These updated versions provide a fix for the problem by using /root/tmp instead of /tmp.
Exploit / POC
Linux-Mandrake MandrakeUpdate Race Condition Vulnerability
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Linux-Mandrake MandrakeUpdate Race Condition Vulnerability
Solution:
To upgrade automatically, use < MandrakeUpdate >.
Mandriva Linux Mandrake 6.0
Mandriva Linux Mandrake 6.1
Mandriva Linux Mandrake 7.0
Mandriva Linux Mandrake 7.1
Solution:
To upgrade automatically, use < MandrakeUpdate >.
Mandriva Linux Mandrake 6.0
-
MandrakeSoft 6.0 i386 grpmi-0.9-6mdk.i586.rpm
ftp://ftp.linux.tucows.com/pub/distributions/Mandrake/Mandrake/updates /6.0/RPMS/grpmi-0.9-6mdk.i586.rpm -
MandrakeSoft 6.0 i386 MandrakeUpdate-6.0-6mdk.i586.rpm
ftp://ftp.linux.tucows.com/pub/distributions/Mandrake/Mandrake/updates /6.0/RPMS/MandrakeUpdate-6.0-6mdk.i586.rpm
Mandriva Linux Mandrake 6.1
-
MandrakeSoft 6.1 i386 grpmi-0.9-4mdk.i586.rpm
ftp://ftp.linux.tucows.com/pub/distributions/Mandrake/Mandrake/updates /6.1/RPMS/grpmi-0.9-4mdk.i586.rpm -
MandrakeSoft 6.1 i386 MandrakeUpdate-6.1-4mdk.i586.rpm
ftp://ftp.linux.tucows.com/pub/distributions/Mandrake/Mandrake/updates /6.1/RPMS/MandrakeUpdate-6.1-4mdk.i586.rpm
Mandriva Linux Mandrake 7.0
-
MandrakeSoft 7.0 i386 grpmi-0.9-13mdk.i586.rpm
ftp://ftp.linux.tucows.com/pub/distributions/Mandrake/Mandrake/updates /7.0/RPMS/grpmi-0.9-13mdk.i586.rpm -
MandrakeSoft 7.0 i386 MandrakeUpdate-7.0-13mdk.i586.rpm
ftp://ftp.linux.tucows.com/pub/distributions/Mandrake/Mandrake/updates /7.0/RPMS/MandrakeUpdate-7.0-13mdk.i586.rpm
Mandriva Linux Mandrake 7.1
-
MandrakeSoft 7.1 i386 grpmi-7.1-9mdk.i586.rpm
ftp://ftp.linux.tucows.com/pub/distributions/Mandrake/Mandrake/updates /7.1/RPMS/grpmi-7.1-9mdk.i586.rpm -
MandrakeSoft 7.1 i386 MandrakeUpdate-7.1-9mdk.i586.rpm
ftp://ftp.linux.tucows.com/pub/distributions/Mandrake/Mandrake/updates /7.1/RPMS/MandrakeUpdate-7.1-9mdk.i586.rpm
References
Linux-Mandrake MandrakeUpdate Race Condition Vulnerability
References:
References: