Ubuntu 8.04 LTS : perl regression (USN-700-2)

Ubuntu Security Notice (C) 2009-2016 Canonical, Inc. / NASL script (C) 2009-2016 Tenable Network Security, Inc.


Synopsis :

The remote Ubuntu host is missing one or more security-related
patches.

Description :

USN-700-1 fixed vulnerabilities in Perl. Due to problems with the
Ubuntu 8.04 build, some Perl .ph files were missing from the resulting
update. This update fixes the problem. We apologize for the
inconvenience.

Jonathan Smith discovered that the Archive::Tar Perl module did not
correctly handle symlinks when extracting archives. If a user or
automated system were tricked into opening a specially crafted tar
file, a remote attacker could over-write arbitrary files.
(CVE-2007-4829)

Tavis Ormandy and Will Drewry discovered that Perl did not
correctly handle certain utf8 characters in regular
expressions. If a user or automated system were tricked into
using a specially crafted expression, a remote attacker
could crash the application, leading to a denial of service.
Ubuntu 8.10 was not affected by this issue. (CVE-2008-1927)

A race condition was discovered in the File::Path Perl
module's rmtree function. If a local attacker successfully
raced another user's call of rmtree, they could create
arbitrary setuid binaries. Ubuntu 6.06 and 8.10 were not
affected by this issue. (CVE-2008-5302)

A race condition was discovered in the File::Path Perl
module's rmtree function. If a local attacker successfully
raced another user's call of rmtree, they could delete
arbitrary files. Ubuntu 6.06 was not affected by this issue.
(CVE-2008-5303).

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

Solution :

Update the affected packages.

Risk factor :

Medium / CVSS Base Score : 6.9
(CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.0
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Ubuntu Local Security Checks

Nessus Plugin ID: 37746 ()

Bugtraq ID: 12767
26355
28928

CVE ID: CVE-2007-4829
CVE-2008-1927
CVE-2008-5302
CVE-2008-5303

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial