Ubuntu 8.04 LTS : perl regression (USN-700-2)

Ubuntu Security Notice (C) 2009-2013 Canonical, Inc. / NASL script (C) 2009-2013 Tenable Network Security, Inc.


Synopsis :

The remote Ubuntu host is missing one or more security-related patches.

Description :

USN-700-1 fixed vulnerabilities in Perl. Due to problems with the
Ubuntu 8.04 build, some Perl .ph files were missing from the resulting
update. This update fixes the problem. We apologize for the
inconvenience.

Jonathan Smith discovered that the Archive::Tar Perl module did not
correctly handle symlinks when extracting archives. If a user or
automated system were tricked into opening a specially crafted tar
file, a remote attacker could over-write arbitrary files.
(CVE-2007-4829)

Tavis Ormandy and Will Drewry discovered that Perl did not
correctly handle certain utf8 characters in regular
expressions. If a user or automated system were tricked into
using a specially crafted expression, a remote attacker
could crash the application, leading to a denial of service.
Ubuntu 8.10 was not affected by this issue. (CVE-2008-1927)

A race condition was discovered in the File::Path Perl
module's rmtree function. If a local attacker successfully
raced another user's call of rmtree, they could create
arbitrary setuid binaries. Ubuntu 6.06 and 8.10 were not
affected by this issue. (CVE-2008-5302)

A race condition was discovered in the File::Path Perl
module's rmtree function. If a local attacker successfully
raced another user's call of rmtree, they could delete
arbitrary files. Ubuntu 6.06 was not affected by this issue.
(CVE-2008-5303).

Solution :

Update the affected packages.

Risk factor :

Medium / CVSS Base Score : 6.9
(CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.0
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Ubuntu Local Security Checks

Nessus Plugin ID: 37746 ()

Bugtraq ID: 12767
28928

CVE ID: CVE-2007-4829
CVE-2008-1927
CVE-2008-5302
CVE-2008-5303