安全研究

安全漏洞
GMime GMIME_UUENCODE_LEN宏缓冲区溢出漏洞

发布日期:2010-02-03
更新日期:2010-02-05

受影响系统:
GNOME GMime 2.4.14
不受影响系统:
GNOME GMime 2.4.15
描述:
BUGTRAQ  ID: 38078
CVE(CAN) ID: CVE-2010-0409

GMime是一个C/C++库,用于创建和解析MIME消息。

GMime的GMIME_UUENCODE_LEN()宏错误的计算了uuencode操作所生成的最大输出字节数,当使用GMime库的应用在uuencode特制输入数据的时候可能溢出两个字节的缓冲区,导致执行任意代码。

<*来源:Jeffrey Stedfast (fejj@novell.com
  
  链接:http://secunia.com/advisories/38459/
        http://www.debian.org/security/2010/dsa-2082
*>

建议:
厂商补丁:

Debian
------
Debian已经为此发布了一个安全公告(DSA-2082-1)以及相应补丁:
DSA-2082-1:New gmime2.2 packages fix arbitrary code execution
链接:http://www.debian.org/security/2010/dsa-2082

补丁下载:
Source archives:

http://security.debian.org/pool/updates/main/g/gmime2.2/gmime2.2_2.2.22-2+lenny2.dsc
Size/MD5 checksum:     1401 ee8a3bfc09aaa29c015ed41c5c64b67f
http://security.debian.org/pool/updates/main/g/gmime2.2/gmime2.2_2.2.22.orig.tar.gz
Size/MD5 checksum:  1064237 c5c2cd8c94dc26b18c5524d70eb2971d
http://security.debian.org/pool/updates/main/g/gmime2.2/gmime2.2_2.2.22-2+lenny2.diff.gz
Size/MD5 checksum:    17500 dd72f21c5228d428c826f95a80fbe411

Architecture independent packages:

http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime2.2-cil_2.2.22-2+lenny2_all.deb
Size/MD5 checksum:   108528 9e3d64264b125ad02bdfd63f4140c5a0
http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2-doc_2.2.22-2+lenny2_all.deb
Size/MD5 checksum:   180604 c8c63b434d77e75f3a5119946f1bc9ad

alpha architecture (DEC Alpha)

http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2a_2.2.22-2+lenny2_alpha.deb
Size/MD5 checksum:   225274 23d66bf390138fbac4fa410a20343cc2
http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2-dev_2.2.22-2+lenny2_alpha.deb
Size/MD5 checksum:   347220 cb4e8e5d8b06ade540827d8688e7f77a

amd64 architecture (AMD x86_64 (AMD64))

http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2-dev_2.2.22-2+lenny2_amd64.deb
Size/MD5 checksum:   275366 fc179fa46f2c04ba4f3780e76452bc59
http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2a_2.2.22-2+lenny2_amd64.deb
Size/MD5 checksum:   212108 656635df2abd04863d0dfd4f743505ff

arm architecture (ARM)

http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2a_2.2.22-2+lenny2_arm.deb
Size/MD5 checksum:   193486 806b92435d3e9f54f822f93d6565381a
http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2-dev_2.2.22-2+lenny2_arm.deb
Size/MD5 checksum:   255280 584045a97ea6d10dd8222b86777677f8

armel architecture (ARM EABI)

http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2-dev_2.2.22-2+lenny2_armel.deb
Size/MD5 checksum:   255824 c6ddb0454fd77cf97761abe97b5d8da1
http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2a_2.2.22-2+lenny2_armel.deb
Size/MD5 checksum:   196376 0c3d19cc7ec906a468b24a3dde738a7d

hppa architecture (HP PA RISC)

http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2-dev_2.2.22-2+lenny2_hppa.deb
Size/MD5 checksum:   298224 d3f0860f1e26f1c34c06bac16d9d3ac3
http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2a_2.2.22-2+lenny2_hppa.deb
Size/MD5 checksum:   224606 e7a807b9e7a8a676a8870589a832ffce

i386 architecture (Intel ia32)

http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2a_2.2.22-2+lenny2_i386.deb
Size/MD5 checksum:   201216 cc47e2077eeda73b680afed854ef69b1
http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2-dev_2.2.22-2+lenny2_i386.deb
Size/MD5 checksum:   253906 69891fcb89d04b5d4645e5c7ee660583

ia64 architecture (Intel ia64)

http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2-dev_2.2.22-2+lenny2_ia64.deb
Size/MD5 checksum:   353182 e0c8c457c0951e8726ab8d676975efd9
http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2a_2.2.22-2+lenny2_ia64.deb
Size/MD5 checksum:   263144 47d7efaa2f0b20d2b88c75aeff9910a7

mipsel architecture (MIPS (Little Endian))

http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2a_2.2.22-2+lenny2_mipsel.deb
Size/MD5 checksum:   197096 cfb1d5013aecea561e200c4b918cb064
http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2-dev_2.2.22-2+lenny2_mipsel.deb
Size/MD5 checksum:   294200 cfaaca5779c560adf0f558fc1176a6bf

s390 architecture (IBM S/390)

http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2-dev_2.2.22-2+lenny2_s390.deb
Size/MD5 checksum:   278084 f63c943d92c5ddf940f110aefcf6bdc9
http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2a_2.2.22-2+lenny2_s390.deb
Size/MD5 checksum:   222436 2b4e56e87b682bfd545573bead6b343e

sparc architecture (Sun SPARC/UltraSPARC)

http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2-dev_2.2.22-2+lenny2_sparc.deb
Size/MD5 checksum:   265136 25a897c072a4011d12a72408fc510aa0
http://security.debian.org/pool/updates/main/g/gmime2.2/libgmime-2.0-2a_2.2.22-2+lenny2_sparc.deb
Size/MD5 checksum:   202074 153bc80b2109ee1ed7659f03aa291bd0

补丁安装方法:

1. 手工安装补丁包:

  首先,使用下面的命令来下载补丁软件:
  # wget url  (url是补丁下载链接地址)

  然后,使用下面的命令来安装补丁:  
  # dpkg -i file.deb (file是相应的补丁名)

2. 使用apt-get自动安装补丁包:

   首先,使用下面的命令更新内部数据库:
   # apt-get update
  
   然后,使用下面的命令安装更新软件包:
   # apt-get upgrade

GNOME
-----
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://ftp.gnome.org/pub/GNOME/sources/gmime/2.4/gmime-2.4.15.changes

浏览次数:2847
严重程度:0(网友投票)
本安全漏洞由绿盟科技翻译整理,版权所有,未经许可,不得转载
绿盟科技给您安全的保障
关于我们
公司介绍
公司荣誉
公司新闻
联系我们
公司总部
分支机构
海外机构
快速链接
绿盟云
绿盟威胁情报中心NTI
技术博客