Your message dated Wed, 20 Oct 2010 06:02:07 +0000
with message-id <[email protected]>
and subject line Bug#596403: fixed in mailscanner 4.79.11-2.1
has caused the Debian Bug report #596403,
regarding CVE-2010-3095: insecure handling of temporary files (incomplete fix
for CVE-2008-5313)
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
596403: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=596403
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: mailscanner
Version: 4.79.11-2
Severity: grave
Tags: security
Hi,
CVE-2008-5313 mentions multiple vulnerable scripts in mailscanner, some of
which were fixed. However, some of the scripts were not completely fixed, like
the following:
/etc/MailScanner/autoupdate/clamav-autoupdate:
> $LogFile = "/tmp/ClamAV.update.log";
...
> unlink $LogFile;
> $Command = "$ClamUpdateCommand --quiet -l $LogFile";
Which is still vulnerable due to a race condition.
Grepping the sources reveals the following (excluding the ones that use mkdir,
since those are more or less fine because mkdir is atomic:)
/etc/MailScanner/wrapper/bitdefender-wrapper:LogFile=/tmp/log.bdc.$$
/etc/MailScanner/wrapper/kaspersky-wrapper: Report=/tmp/kavoutput.tmp.$$
/etc/MailScanner/autoupdate/clamav-autoupdate:$LogFile =
"/tmp/ClamAV.update.log";
/etc/MailScanner/autoupdate/f-prot-6-autoupdate:my $logfile = "/tmp/f-prot-6-
update-$$";
/etc/MailScanner/autoupdate/f-prot-6-autoupdate: unlink "/tmp/fpavdef.lock";
Regards,
--
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net
--- End Message ---
--- Begin Message ---
Source: mailscanner
Source-Version: 4.79.11-2.1
We believe that the bug you reported is fixed in the latest version of
mailscanner, which is due to be installed in the Debian FTP archive:
mailscanner_4.79.11-2.1.debian.tar.gz
to main/m/mailscanner/mailscanner_4.79.11-2.1.debian.tar.gz
mailscanner_4.79.11-2.1.dsc
to main/m/mailscanner/mailscanner_4.79.11-2.1.dsc
mailscanner_4.79.11-2.1_all.deb
to main/m/mailscanner/mailscanner_4.79.11-2.1_all.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Jari Aalto <[email protected]> (supplier of updated mailscanner package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Mon, 18 Oct 2010 00:47:47 +0300
Source: mailscanner
Binary: mailscanner
Architecture: source all
Version: 4.79.11-2.1
Distribution: unstable
Urgency: low
Maintainer: Simon Walter <[email protected]>
Changed-By: Jari Aalto <[email protected]>
Description:
mailscanner - email gateway for virus scanning, spam and phishing detection
Closes: 596403
Changes:
mailscanner (4.79.11-2.1) unstable; urgency=low
.
* Non-maintainer upload.
* debian/patches
- (CVE-2010-3095--bug596403): New. Fix insecure handling of
temporary files: use of $$. (grave, security; Closes: #596403).
Checksums-Sha1:
995781cfac37cc292b076d81b833bc562f84d02f 1758 mailscanner_4.79.11-2.1.dsc
5eecf9d8e3dd4a398656dd5d2bacc0de4aae8000 47770
mailscanner_4.79.11-2.1.debian.tar.gz
05d2877f327510b5e3be7abf48344aa2de041f41 712326 mailscanner_4.79.11-2.1_all.deb
Checksums-Sha256:
047fe9385bf3bd16bbe87cfe96d0be53cc299175cfbcd62c12f284ecb42b0451 1758
mailscanner_4.79.11-2.1.dsc
c56c8ad7833858e71e6919a0542ee841c93f46fbe91baa2bac4e19884affd285 47770
mailscanner_4.79.11-2.1.debian.tar.gz
b343e8898e5c976ed1adc0f729634a7ce45b3186952966111fcf1119d66f2019 712326
mailscanner_4.79.11-2.1_all.deb
Files:
5873de4c64def3384e066584d3e4ebce 1758 mail optional mailscanner_4.79.11-2.1.dsc
29d33e13fc613b472b89b6e7ab994a9e 47770 mail optional
mailscanner_4.79.11-2.1.debian.tar.gz
4c955a2c8f7dc22baefadcf9d0f165fb 712326 mail optional
mailscanner_4.79.11-2.1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iQIcBAEBCAAGBQJMvoK5AAoJECHSBYmXSz6Wb+wP/20P92OGhboDPyVq2jw5cQvg
c6nwHpH3/JvNUURWIcYiroD6tgBKxFi1V1zkPLABPw2Czn5HwpWrX/2wnpNONXLc
+Thzomje+9juGORLneJzBA0tB3zDauLxp9jemIjLAMIqypdCF9TP5SP+7fsvBSmT
/IEEVPC56OXx8U6Qy7IAyVFzcgZ2nAUz9dW0BhAhsV1DIwZ9EYBstKiwua1U8fsU
MRKUa1QpJiKy2IptDiopoRlJB/MY5+0dQXwlKD7UNOSk0sdwigU7uCW09iGZ9j4F
aDscGDlmK6GuxT0QCB5ChUIa+lQG4scbFNgN6o2DFs/og52FIHnqKcgb1QzK2zBE
vek94OalrCBaIn1Q71grQ97udcSWKXwrBCHlM9ybCPwIBwpNT67jOF76wMW/qsvz
qfZ4LBC2uRfv93biIUf83tuzEZRq+HY9R8SPeDkd0GsSsEkXi84Zir71BGNK6rfL
T1cDfIRGaEZsnPRQvf4WETqUtvhfD7/gYxlHs4/JpSOx15tpfFfGCdFsElS1k1jF
/M+lxd44zGMWD2YwpTnbxNEb2QiiJf8Uks0lwuiRapJx47qA0ati2xVXSc5GbRqk
LQWS6wW79kk55XhcIZUI0KZ/Qq/IdHq/cl2gU/ui+8h8G4netxBmyQTLYQmoDp1h
vfEKE8hA5LD9A2ED8h2P
=8dZV
-----END PGP SIGNATURE-----
--- End Message ---