安全研究

安全漏洞
libgadu联系人描述远程溢出漏洞

发布日期:2008-10-28
更新日期:2008-10-29

受影响系统:
Wojtek Kaniewski libgadu 1.8.1
不受影响系统:
Wojtek Kaniewski libgadu 1.8.2
描述:
BUGTRAQ  ID: 31951
CVE(CAN) ID: CVE-2008-4776

libgadu是用于实现Gadu-Gadu即时通讯协议的函数库。

libgadu库在解析联系人描述字段时存在缓冲区溢出漏洞。如果恶意服务器向使用libgadu库的聊天客户端发送的报文中所声明的描述长度大于gg_notify_reply结构长度的话,就可以触发这个溢出,导致执行任意指令。

<*来源:Tomas Hoger (thoger@redhat.com
  
  链接:https://bugzilla.redhat.com/show_bug.cgi?format=multiple&id=468830
        http://www.debian.org/security/2008/dsa-1664
*>

建议:
厂商补丁:

Debian
------
Debian已经为此发布了一个安全公告(DSA-1664-1)以及相应补丁:
DSA-1664-1:New ekg packages fix denial of service
链接:http://www.debian.org/security/2008/dsa-1664

补丁下载:
Source archives:

http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2-1etch2.diff.gz
Size/MD5 checksum:    37320 1c357cd857b7ef675a14fe103a0965c9
http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2.orig.tar.gz
Size/MD5 checksum:   514073 b4ea482130e163af1456699e2e6983d9
http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2-1etch2.dsc
Size/MD5 checksum:      750 0ff1117467170af0a00db3701bfa3e30

alpha architecture (DEC Alpha)

http://security.debian.org/pool/updates/main/e/ekg/libgadu3_1.7~rc2-1etch2_alpha.deb
Size/MD5 checksum:    75020 32743d8f1c90d89e8fa344609bc3dee3
http://security.debian.org/pool/updates/main/e/ekg/libgadu-dev_1.7~rc2-1etch2_alpha.deb
Size/MD5 checksum:   161822 79d864a5bb2b5cf7f099647d92f39a86
http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2-1etch2_alpha.deb
Size/MD5 checksum:   320302 758aa135dad96eda3dff591375046982

amd64 architecture (AMD x86_64 (AMD64))

http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2-1etch2_amd64.deb
Size/MD5 checksum:   297518 1c9fcbce7540d6ff538f98710de424b2
http://security.debian.org/pool/updates/main/e/ekg/libgadu-dev_1.7~rc2-1etch2_amd64.deb
Size/MD5 checksum:   136580 9ddd7e5e6fb2c3940f426d07bedf3478
http://security.debian.org/pool/updates/main/e/ekg/libgadu3_1.7~rc2-1etch2_amd64.deb
Size/MD5 checksum:    69742 ce39c6ae5a6b4d6c5f9da1a5b92aee5c

arm architecture (ARM)

http://security.debian.org/pool/updates/main/e/ekg/libgadu-dev_1.7~rc2-1etch2_arm.deb
Size/MD5 checksum:   135028 c593a1482e5673777dd3b4d1513af5d4
http://security.debian.org/pool/updates/main/e/ekg/libgadu3_1.7~rc2-1etch2_arm.deb
Size/MD5 checksum:    67986 905284ffdb2f523c175b5b0590e139f5
http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2-1etch2_arm.deb
Size/MD5 checksum:   287590 770c154cbe20f9e5ef9a150eba228f63

hppa architecture (HP PA RISC)

http://security.debian.org/pool/updates/main/e/ekg/libgadu-dev_1.7~rc2-1etch2_hppa.deb
Size/MD5 checksum:   143792 879b7e4fa25861fb4b0138a64b20df1a
http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2-1etch2_hppa.deb
Size/MD5 checksum:   310140 5187d07159a4bb9937147f411d4e729c
http://security.debian.org/pool/updates/main/e/ekg/libgadu3_1.7~rc2-1etch2_hppa.deb
Size/MD5 checksum:    73874 32e077a057c65aeef4f42028c1beb29e

i386 architecture (Intel ia32)

http://security.debian.org/pool/updates/main/e/ekg/libgadu3_1.7~rc2-1etch2_i386.deb
Size/MD5 checksum:    67326 e69788fafa929636e435a7c498d6cbb2
http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2-1etch2_i386.deb
Size/MD5 checksum:   287730 bee66bb3ffa81f8d96a611d594c7e6c9
http://security.debian.org/pool/updates/main/e/ekg/libgadu-dev_1.7~rc2-1etch2_i386.deb
Size/MD5 checksum:   131298 9455116765cded14599b13def2760856

ia64 architecture (Intel ia64)

http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2-1etch2_ia64.deb
Size/MD5 checksum:   394676 5da127623779c65a6882763d124e106e
http://security.debian.org/pool/updates/main/e/ekg/libgadu3_1.7~rc2-1etch2_ia64.deb
Size/MD5 checksum:    86672 df4d5a3e854546b2107829cae3c52758
http://security.debian.org/pool/updates/main/e/ekg/libgadu-dev_1.7~rc2-1etch2_ia64.deb
Size/MD5 checksum:   158010 7a0806cabe1c34094f6488e12381c4ee

mips architecture (MIPS (Big Endian))

http://security.debian.org/pool/updates/main/e/ekg/libgadu-dev_1.7~rc2-1etch2_mips.deb
Size/MD5 checksum:   144930 c7f6dd469d3b41eb46c4e43c1af003d3
http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2-1etch2_mips.deb
Size/MD5 checksum:   298464 b1d464071ff3e1b6fd5b40c0b1be4b3a
http://security.debian.org/pool/updates/main/e/ekg/libgadu3_1.7~rc2-1etch2_mips.deb
Size/MD5 checksum:    66636 3e4eb4be92ab91106ccb079d9537a4ec

mipsel architecture (MIPS (Little Endian))

http://security.debian.org/pool/updates/main/e/ekg/libgadu-dev_1.7~rc2-1etch2_mipsel.deb
Size/MD5 checksum:   140696 8031b8d2eefad8db832ee9d399439a6b
http://security.debian.org/pool/updates/main/e/ekg/libgadu3_1.7~rc2-1etch2_mipsel.deb
Size/MD5 checksum:    66494 44c2a30a3b164c7311ac24509b484371
http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2-1etch2_mipsel.deb
Size/MD5 checksum:   297158 19ad2f941ff975a0765a179385042ede

powerpc architecture (PowerPC)

http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2-1etch2_powerpc.deb
Size/MD5 checksum:   297734 59019fd4f676af28a2ac587761d6613c
http://security.debian.org/pool/updates/main/e/ekg/libgadu3_1.7~rc2-1etch2_powerpc.deb
Size/MD5 checksum:    70036 adf3410f5fa8466c8ad9cea0107e1c7e
http://security.debian.org/pool/updates/main/e/ekg/libgadu-dev_1.7~rc2-1etch2_powerpc.deb
Size/MD5 checksum:   136148 42d66957fcf3a59ac69eb2e9eece6ac5

s390 architecture (IBM S/390)

http://security.debian.org/pool/updates/main/e/ekg/libgadu-dev_1.7~rc2-1etch2_s390.deb
Size/MD5 checksum:   134754 3e85a76f4ac6f70917a0edcfbbd1277c
http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2-1etch2_s390.deb
Size/MD5 checksum:   302854 f445e55ac77cccaa304eb9d86c230515
http://security.debian.org/pool/updates/main/e/ekg/libgadu3_1.7~rc2-1etch2_s390.deb
Size/MD5 checksum:    69540 9cd3c7315a827bcfd940660681254106

sparc architecture (Sun SPARC/UltraSPARC)

http://security.debian.org/pool/updates/main/e/ekg/ekg_1.7~rc2-1etch2_sparc.deb
Size/MD5 checksum:   286504 f8cd06af412041a6594765ac36010eb3
http://security.debian.org/pool/updates/main/e/ekg/libgadu3_1.7~rc2-1etch2_sparc.deb
Size/MD5 checksum:    68618 fd7f69d09515faa187e8970d6dcf82a9
http://security.debian.org/pool/updates/main/e/ekg/libgadu-dev_1.7~rc2-1etch2_sparc.deb
Size/MD5 checksum:   134926 888e34a4ca3055eb40f5cc16d1ed89b7

补丁安装方法:

1. 手工安装补丁包:

  首先,使用下面的命令来下载补丁软件:
  # wget url  (url是补丁下载链接地址)

  然后,使用下面的命令来安装补丁:  
  # dpkg -i file.deb (file是相应的补丁名)

2. 使用apt-get自动安装补丁包:

   首先,使用下面的命令更新内部数据库:
   # apt-get update
  
   然后,使用下面的命令安装更新软件包:
   # apt-get upgrade

Wojtek Kaniewski
----------------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://toxygen.net/libgadu/files/libgadu-1.8.2.tar.gz

浏览次数:3648
严重程度:0(网友投票)
本安全漏洞由绿盟科技翻译整理,版权所有,未经许可,不得转载
绿盟科技给您安全的保障
关于我们
公司介绍
公司荣誉
公司新闻
联系我们
公司总部
分支机构
海外机构
快速链接
绿盟云
绿盟威胁情报中心NTI
技术博客