[prev in list] [next in list] [prev in thread] [next in thread]
List: debian-security
Subject: Serwis - 4607: [ONTP SP] [SECURITY] [DSA-2133-1] New collectd
From: ONTP.NET_-_DziaĆ_Serwisu_IT_i_Central_VoIP <serwis () ontp ! net>
Date: 2010-12-14 7:59:16
Message-ID: 249020366.34051292313561240.JavaMail.noreply () ontp ! net
[Download RAW message or body]
[Attachment #2 (text/html)]
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" \
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html \
xmlns="http://www.w3.org/1999/xhtml"> <head><style type="text/css" media="all">
<!--
body {
font-size: 11pt;
margin: 0px;
font-family: Arial, Helvetica, serif;
padding-top: 5px;
padding-bottom: 5px;
padding-left: 10px;
padding-right: 10px;
background-color: #FFFFFD;
}
.mail-header {
width: 100%;
background-color:#8DB6CD;
font-weight: bold;
}
.section-header {
width: 100%;
background-color: #A4D3EE;
}
.section-space {
margin-top: 10px;
position: relative;
}
.comment-even {
background-color: #EEEED1;
}
.comment-odd td,.comment-even td {
padding-top: 10px;
padding-bottom: 10px;
}
.rich-table {
width: 100%;
border-collapse: collapse;
empty-cells: show;
font: inherit;
}
.detail-header,.detail-text {
padding-top: 0px;
padding-bottom: 0px;
}
.detail-header {
width: 150pt;
border-right: dotted 1px #CDC8B1;
}
.detail-text {
padding-left: 5pt;
padding-right: 0pt;
}
.comment-author {
width: 150pt;
}
.comment-text {
width: auto;
padding-left: 5pt;
padding-right: 0pt;
}
.comment-header {
color:#000000;
font-family: inherit;
font-size:8pt;
font-weight: bold;
padding:4px;
text-align:center;
white-space:nowrap;
background-color:#ECF4FE;
border-bottom: dotted 1px #CDC8B1;
}
.value-change {
color: red;
}
.note-list-header {
color: #36648B;
font-weight: bold;
margin-top: 1px;
margin-bottom: 1px;
border: 0px;
}
.note-list-row,.note-list-row>p {
padding: 0px;
margin-top: 1px;
margin-bottom: 1px;
border: 0px;
}
.scroll-area {
position: relative;
left: -1px;
width: 100%;
padding: 1px;
}
.questionToAsNote {
color: #3366ff;
font-style: italic;
}
.questionToAsNote:before {
content: "? ";
}
.toLeft {
text-align: left;
}
.toRight {
text-align: right;
}
.disabled-link {
color: grey;
}
--></style>
</head>
<body><div id="j_id15" class="mail-header"><table style="width:100%; font: \
inherit;"> <tbody>
<tr>
<td class="toLeft">Zgłoszenie zmodyfikowane 2010-12-14 08:59:20
<a name="top">, przez [kw] Krzysztof Wajda
</a></td>
<td class="toRight"><span class="disabled-link" style="margin-right: \
5px;">Początek</span>
<a href="#comments" style="margin-right: 5px;" \
class="value-change">Komentarze</a> <a href="#description" class="">Opis</a></td>
</tr>
</tbody>
</table>
</div><table class="section-space" style="font: inherit; font-size:9pt; \
border-collapse: collapse;"> <tbody>
<tr>
<td class="detail-header"><span class="">Firma:</span></td>
<td class="detail-text"><span class="">ONTP.NET Sp. z o.o.</span></td>
</tr>
<tr>
<td class="detail-header"><span class="">System:</span></td>
<td class="detail-text"><span class="">Serwis</span></td>
</tr>
<tr>
<td class="detail-header"><span class="">Kategoria:</span></td>
<td class="detail-text"><span class="">Centrale i faksy</span></td>
</tr>
<tr>
<td class="detail-header"><span class="">Typ:</span></td>
<td class="detail-text"><span class="">Problem</span></td>
</tr>
<tr>
<td class="detail-header"><span class="">Priorytet:</span></td>
<td class="detail-text"><span class="">3</span></td>
</tr>
<tr>
<td class="detail-header"><span class="value-change">Status:</span></td>
<td class="detail-text"><span class="value-change">Zamknięty</span></td>
</tr>
<tr>
<td class="detail-header"><span class="value-change">Postanowienie:</span></td>
<td class="detail-text"><span class="value-change">Rozwiązany</span></td>
</tr>
<tr>
<td class="detail-header"><span class="value-change">Zakończono:</span></td>
<td class="detail-text"><span class="value-change">2010-12-14 08:59:20</span></td>
</tr>
<tr>
<td class="detail-header"><span class="">Przypisany do:</span></td>
<td class="detail-text"><span class="">kw</span></td>
</tr>
<tr>
<td class="detail-header"><span class="">Rozpocząć:</span></td>
<td class="detail-text"><span class="">2010-12-14</span></td>
</tr>
<tr>
<td class="detail-header"><span class="">Ukończyć do:</span></td>
<td class="detail-text"><span class=""></span></td>
</tr>
<tr>
<td class="detail-header"><span class="">Kontakt:</span></td>
</tr>
</tbody>
</table>
<div id="j_id56" class="section-header section-space" style="font-weight: \
bold;">Podsumowanie: 4607 - <span class="">[SECURITY] [DSA-2133-1] New collectd \
packages fix denial of service</span></div><div id="j_id59" class="section-header \
section-space" style="font-weight: bold;"><table style="width:100%; font: inherit;"> \
<tbody> <tr>
<td class="toLeft">
<a name="comments">Komentarze:</a></td>
<td class="toRight">
<a href="#top" style="margin-right: 5px;">Początek </a><span \
class="disabled-link" style="margin-right: 5px;">Komentarze</span>
<a href="#description" class="">Opis</a></td>
</tr>
</tbody>
</table>
</div><div id="j_id74" class="scroll-area" style="position: relative;"><table \
class="dr-table rich-table " id="bugNotesList" border="0" cellpadding="0" \
cellspacing="0"><colgroup span="0"></colgroup><tbody id="bugNotesList:tb"><tr \
class="dr-table-firstrow rich-table-firstrow "><td class="dr-table-cell \
rich-table-cell " id="bugNotesList:0:j_id76" style="padding-top: 7px; padding-bottom: \
7px; border-top: 1px dashed #CDC8B1; border-bottom: 1px dashed #CDC8B1"><span \
class="note-list-header">kw / </span><span class="note-list-header">2010-12-14 \
08:59:20</span> <br /><span class="note-list-row \
value-change"><p>Zaktualizowano.</p></span></td></tr></tbody></table></div><div \
id="j_id81" class="section-header section-space" style="font-weight: bold;"><table \
style="width:100%; font: inherit;"> <tbody>
<tr>
<td class="toLeft">
<a name="description">Opis:</a></td>
<td class="toRight">
<a href="#top" style="margin-right: 5px;">Początek </a>
<a href="#comments" class="value-change" style="margin-right: \
5px;">Komentarze</a><span class="disabled-link">Opis</span></td> </tr>
</tbody>
</table>
</div><div id="j_id94" style="position: relative; paddign-top: 3px; padding-bottom: \
3px; padding-left: 5px; padding-right: 5px; margin: 10px;"><span \
class=""><p>-----BEGIN PGP SIGNED MESSAGE-----<br /> Hash: SHA1<br /> <br /> - \
------------------------------------------------------------------------<br /> Debian \
Security Advisory DSA-2133-1 security@debian.org<br /> \
http://www.debian.org/security/ Raphael Geissert<br /> \
December 13, 2010 http://www.debian.org/security/faq<br /> - \
------------------------------------------------------------------------<br /> <br /> \
Package : collectd<br /> Vulnerability : denial of service<br /> Problem type \
: remote<br /> Debian-specific: no<br /> CVE Id : CVE-2010-4336<br /> Debian \
Bug : 605092<br /> <br /> <br /> It was discovered that collectd, a statistics \
collection and monitoring<br /> daemon, is prone to a denial of service attach via a \
crafted network<br /> packet.<br /> <br /> <br /> For the stable distribution \
(lenny), this problem has been fixed in<br /> version 4.4.2-3+lenny1.<br /> <br /> \
For the testing distribution (squeeze), this problem has been fixed in<br /> version \
4.10.1-1+squeeze2.<br /> <br /> For the unstable distribution (sid), this problem has \
been fixed in<br /> version 4.10.1-2.1.<br /> <br /> <br /> This advisory only \
contains the packages for the alpha, amd64, arm,<br /> armel, hppa, i386, ia64, mips, \
powerpc, s390 and sparc architectures.<br /> The packages for the mipsel architecture \
will be released soon.<br /> <br /> We recommend that you upgrade your collectd \
packages.<br /> <br /> Upgrade instructions<br /> - --------------------<br /> <br /> \
wget url<br /> will fetch the file for you<br /> dpkg -i file.deb<br /> will install \
the referenced file.<br /> <br /> If you are using the apt-get package manager, use \
the line for<br /> sources.list as given below:<br /> <br /> apt-get update<br /> \
will update the internal database<br /> apt-get upgrade<br /> will install corrected \
packages<br /> <br /> You may use an automated update by adding the resources from \
the<br /> footer to the proper configuration.<br /> <br /> Debian GNU/Linux 5.0 alias \
lenny (stable)<br /> - ------------------------------------------<br /> <br /> Stable \
updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, powerpc, \
s390 and sparc.<br /> <br /> Source archives:<br /> <br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2-3+lenny1.dsc<br \
/> Size/MD5 checksum: 1742 7eb809863e35c70e5da831ef83e5935b<br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2.orig.tar.gz<br \
/> Size/MD5 checksum: 1220408 dbffe35a2d19840e86253c7052485ff0<br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2-3+lenny1.diff.gz<br \
/> Size/MD5 checksum: 38096 6e0579c82d00a84da53d06eba261a157<br /> <br /> \
Architecture independent packages:<br /> <br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd-dev_4.4.2-3+lenny1_all.deb<br \
/> Size/MD5 checksum: 58100 6ab2decfb0f6d4822bd399f83acde4bf<br /> <br /> alpha \
architecture (DEC Alpha)<br /> <br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd-dbg_4.4.2-3+lenny1_alpha.deb<br \
/> Size/MD5 checksum: 476094 3ba6081a7bda823e51deb57e670681a6<br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2-3+lenny1_alpha.deb<br \
/> Size/MD5 checksum: 465310 512bcae97e48588f6f8e3c06b71b4a05<br /> <br /> amd64 \
architecture (AMD x86_64 (AMD64))<br /> <br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd-dbg_4.4.2-3+lenny1_amd64.deb<br \
/> Size/MD5 checksum: 496366 90685a47da1745e9bbc8dba2979cfe64<br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2-3+lenny1_amd64.deb<br \
/> Size/MD5 checksum: 443120 1ab233f04323751ced0078715dd82071<br /> <br /> arm \
architecture (ARM)<br /> <br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd-dbg_4.4.2-3+lenny1_arm.deb<br \
/> Size/MD5 checksum: 466518 399a912918db34f2986fb5338081b261<br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2-3+lenny1_arm.deb<br \
/> Size/MD5 checksum: 425430 21cd791ba65567b6998188efe1b9d9c3<br /> <br /> armel \
architecture (ARM EABI)<br /> <br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd-dbg_4.4.2-3+lenny1_armel.deb<br \
/> Size/MD5 checksum: 469682 8054cff25dc257476d2a533b6058ee93<br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2-3+lenny1_armel.deb<br \
/> Size/MD5 checksum: 439244 f53bd8054c6c27b08e39b2aef5aaab61<br /> <br /> hppa \
architecture (HP PA RISC)<br /> <br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd-dbg_4.4.2-3+lenny1_hppa.deb<br \
/> Size/MD5 checksum: 462784 cf54ada8a3af6e42c06b0900dbeb90e7<br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2-3+lenny1_hppa.deb<br \
/> Size/MD5 checksum: 465640 5d2b68b4a158e7ff513227dec30cdd16<br /> <br /> i386 \
architecture (Intel ia32)<br /> <br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd-dbg_4.4.2-3+lenny1_i386.deb<br \
/> Size/MD5 checksum: 464516 2a7655f9aa1b3a4c7621cf78bd374efc<br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2-3+lenny1_i386.deb<br \
/> Size/MD5 checksum: 423402 a4d5e2884269a67f3e97751dd71c27fd<br /> <br /> ia64 \
architecture (Intel ia64)<br /> <br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd-dbg_4.4.2-3+lenny1_ia64.deb<br \
/> Size/MD5 checksum: 480124 44fcf702d45fcf3eabb96d61472dcb55<br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2-3+lenny1_ia64.deb<br \
/> Size/MD5 checksum: 546484 5775d3d87c1f2f565e4b638d935bea7c<br /> <br /> mips \
architecture (MIPS (Big Endian))<br /> <br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd-dbg_4.4.2-3+lenny1_mips.deb<br \
/> Size/MD5 checksum: 480898 0809b6c3bdb6571ce7a8f2e4a3d26522<br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2-3+lenny1_mips.deb<br \
/> Size/MD5 checksum: 432446 0d96311abc84ea9d52633410cf9bc9ac<br /> <br /> powerpc \
architecture (PowerPC)<br /> <br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd-dbg_4.4.2-3+lenny1_powerpc.deb<br \
/> Size/MD5 checksum: 530484 c566c5caa95ebf68637cbf22ebb09d55<br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2-3+lenny1_powerpc.deb<br \
/> Size/MD5 checksum: 528826 9465884478ae3b9d01e917c6a83c4f11<br /> <br /> s390 \
architecture (IBM S/390)<br /> <br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd-dbg_4.4.2-3+lenny1_s390.deb<br \
/> Size/MD5 checksum: 467426 19128d66e83d38e13dc393741218a7b2<br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2-3+lenny1_s390.deb<br \
/> Size/MD5 checksum: 446950 01f36f15ede792ce1c6840b8e058ef9d<br /> <br /> sparc \
architecture (Sun SPARC/UltraSPARC)<br /> <br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd-dbg_4.4.2-3+lenny1_sparc.deb<br \
/> Size/MD5 checksum: 433938 5e577a4403d2318faac96709179bf47e<br /> \
http://security.debian.org/pool/updates/main/c/collectd/collectd_4.4.2-3+lenny1_sparc.deb<br \
/> Size/MD5 checksum: 428472 7661dd06cf7c90130dd706cf21bacf3d<br /> <br /> <br /> \
These files will probably be moved into the stable distribution on<br /> its next \
update.<br /> <br /> - \
---------------------------------------------------------------------------------<br \
/> For apt-get: deb http://security.debian.org/ stable/updates main<br /> For \
dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main<br /> \
Mailing list: debian-security-announce@lists.debian.org<br /> Package info: \
`apt-cache show ' and http://packages.debian.org/<br /> -----BEGIN PGP \
SIGNATURE-----<br /> Version: GnuPG v1.4.10 (GNU/Linux)<br /> <br /> \
iEYEARECAAYFAk0GxcoACgkQYy49rUbZzlpAlgCZAZSgQrZaMNsBFhFRrPzBqFJW<br /> \
kRYAn2cf3DxQhdKPMaSSW3URL7t67wlw<br /> =wjgy<br /> -----END PGP SIGNATURE-----<br /> \
<br /> <br /> -- <br /> To UNSUBSCRIBE, email to \
debian-security-announce-REQUEST@lists.debian.org<br /> with a subject of \
"unsubscribe". Trouble? Contact listmaster@lists.debian.org<br /> Archive: \
http://lists.debian.org/201012131918.10353.geissert@debian.org</p></span></div>
<div style="clear: both"></div>
</body>
</html>
--
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: http://lists.debian.org/249020366.34051292313561240.JavaMail.noreply@ontp.net
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic