Chip 2007 January, February, March & April

home *** CD-ROM | disk | FTP | other *** search

/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / debian_DSA-165.nasl < prev next >

Wrap

Text File | 2005-03-31 | 10KB | 178 lines

# This script was automatically generated from the dsa-165 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Mordred Labs and others found several vulnerabilities in PostgreSQL, an object-relational SQL database. They are inherited from several buffer overflows and integer overflows. Specially crafted long date and time input, currency, repeat data and long timezone names could cause the PostgreSQL server to crash as well as specially crafted input data for lpad() and rpad(). More buffer/integer overflows were found in circle_poly(), path_encode() and path_addr(). Except for the last three, these problems are fixed in the upstream release 7.2.2 of PostgreSQL which is the recommended version to use. Most of these problems do not exist in the version of PostgreSQL that Debian ships in the potato release since the corresponding functionality is not yet implemented. However, PostgreSQL 6.5.3 is quite old and may bear more risks than we are aware of, which may include further buffer overflows, and certainly include bugs that threaten the integrity of your data. You are strongly advised not to use this release but to upgrade your system to Debian 3.0 (stable) including PostgreSQL release 7.2.1 instead, where many bugs have been fixed and new features introduced to increase compatibility with the SQL standards. If you consider an upgrade, please make sure to dump the entire database system using the pg_dumpall utility. Please take into consideration that the newer PostgreSQL is more strict in its input handling. This means that tests like "foo = NULL" which are not valid won\'t be accepted anymore. It also means that when using UNICODE encoding, ISO 8859-1 and ISO 8859-15 are no longer valid encodings to use when inserting data into the relation. In such a case you are advised to convert the dump in question using recode latin1..utf-16. These problems have been fixed in version 7.2.1-2woody2 for the current stable distribution (woody) and in version 7.2.2-2 for the unstable distribution (sid). The old stable distribution (potato) is partially affected and we ship a fixed version 6.5.3-27.2 for it. We recommend that you upgrade your PostgreSQL packages. Solution : http://www.debian.org/security/2002/dsa-165 Risk factor : High'; if (description) { script_id(15002); script_version("$Revision: 1.4 $"); script_xref(name: "DSA", value: "165"); script_cve_id("CAN-2002-0972", "CAN-2002-1398", "CAN-2002-1400", "CAN-2002-1401", "CAN-2002-1402"); script_description(english: desc); script_copyright(english: "This script is (C) 2004 Michel Arboi"); script_name(english: "[DSA165] DSA-165-1 postgresql"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-165-1 postgresql"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'ecpg', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ecpg is vulnerable in Debian 2.2.\nUpgrade to ecpg_6.5.3-27.2\n'); } if (deb_check(prefix: 'libpgperl', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpgperl is vulnerable in Debian 2.2.\nUpgrade to libpgperl_6.5.3-27.2\n'); } if (deb_check(prefix: 'libpgsql2', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpgsql2 is vulnerable in Debian 2.2.\nUpgrade to libpgsql2_6.5.3-27.2\n'); } if (deb_check(prefix: 'libpgtcl', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpgtcl is vulnerable in Debian 2.2.\nUpgrade to libpgtcl_6.5.3-27.2\n'); } if (deb_check(prefix: 'odbc-postgresql', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package odbc-postgresql is vulnerable in Debian 2.2.\nUpgrade to odbc-postgresql_6.5.3-27.2\n'); } if (deb_check(prefix: 'pgaccess', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package pgaccess is vulnerable in Debian 2.2.\nUpgrade to pgaccess_6.5.3-27.2\n'); } if (deb_check(prefix: 'postgresql', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package postgresql is vulnerable in Debian 2.2.\nUpgrade to postgresql_6.5.3-27.2\n'); } if (deb_check(prefix: 'postgresql-client', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package postgresql-client is vulnerable in Debian 2.2.\nUpgrade to postgresql-client_6.5.3-27.2\n'); } if (deb_check(prefix: 'postgresql-contrib', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package postgresql-contrib is vulnerable in Debian 2.2.\nUpgrade to postgresql-contrib_6.5.3-27.2\n'); } if (deb_check(prefix: 'postgresql-dev', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package postgresql-dev is vulnerable in Debian 2.2.\nUpgrade to postgresql-dev_6.5.3-27.2\n'); } if (deb_check(prefix: 'postgresql-doc', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package postgresql-doc is vulnerable in Debian 2.2.\nUpgrade to postgresql-doc_6.5.3-27.2\n'); } if (deb_check(prefix: 'postgresql-pl', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package postgresql-pl is vulnerable in Debian 2.2.\nUpgrade to postgresql-pl_6.5.3-27.2\n'); } if (deb_check(prefix: 'postgresql-test', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package postgresql-test is vulnerable in Debian 2.2.\nUpgrade to postgresql-test_6.5.3-27.2\n'); } if (deb_check(prefix: 'python-pygresql', release: '2.2', reference: '6.5.3-27.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package python-pygresql is vulnerable in Debian 2.2.\nUpgrade to python-pygresql_6.5.3-27.2\n'); } if (deb_check(prefix: 'courier-authpostgresql', release: '3.0', reference: '0.37.3-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package courier-authpostgresql is vulnerable in Debian 3.0.\nUpgrade to courier-authpostgresql_0.37.3-3.1\n'); } if (deb_check(prefix: 'libecpg3', release: '3.0', reference: '7.2.1-2woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libecpg3 is vulnerable in Debian 3.0.\nUpgrade to libecpg3_7.2.1-2woody2\n'); } if (deb_check(prefix: 'libpgperl', release: '3.0', reference: '7.2.1-2woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpgperl is vulnerable in Debian 3.0.\nUpgrade to libpgperl_7.2.1-2woody2\n'); } if (deb_check(prefix: 'libpgsql2', release: '3.0', reference: '7.2.1-2woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpgsql2 is vulnerable in Debian 3.0.\nUpgrade to libpgsql2_7.2.1-2woody2\n'); } if (deb_check(prefix: 'libpgtcl', release: '3.0', reference: '7.2.1-2woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpgtcl is vulnerable in Debian 3.0.\nUpgrade to libpgtcl_7.2.1-2woody2\n'); } if (deb_check(prefix: 'odbc-postgresql', release: '3.0', reference: '7.2.1-2woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package odbc-postgresql is vulnerable in Debian 3.0.\nUpgrade to odbc-postgresql_7.2.1-2woody2\n'); } if (deb_check(prefix: 'pgaccess', release: '3.0', reference: '7.2.1-2woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package pgaccess is vulnerable in Debian 3.0.\nUpgrade to pgaccess_7.2.1-2woody2\n'); } if (deb_check(prefix: 'postgresql', release: '3.0', reference: '7.2.1-2woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package postgresql is vulnerable in Debian 3.0.\nUpgrade to postgresql_7.2.1-2woody2\n'); } if (deb_check(prefix: 'postgresql-client', release: '3.0', reference: '7.2.1-2woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package postgresql-client is vulnerable in Debian 3.0.\nUpgrade to postgresql-client_7.2.1-2woody2\n'); } if (deb_check(prefix: 'postgresql-contrib', release: '3.0', reference: '7.2.1-2woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package postgresql-contrib is vulnerable in Debian 3.0.\nUpgrade to postgresql-contrib_7.2.1-2woody2\n'); } if (deb_check(prefix: 'postgresql-dev', release: '3.0', reference: '7.2.1-2woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package postgresql-dev is vulnerable in Debian 3.0.\nUpgrade to postgresql-dev_7.2.1-2woody2\n'); } if (deb_check(prefix: 'postgresql-doc', release: '3.0', reference: '7.2.1-2woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package postgresql-doc is vulnerable in Debian 3.0.\nUpgrade to postgresql-doc_7.2.1-2woody2\n'); } if (deb_check(prefix: 'python-pygresql', release: '3.0', reference: '7.2.1-2woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package python-pygresql is vulnerable in Debian 3.0.\nUpgrade to python-pygresql_7.2.1-2woody2\n'); } if (w) { security_hole(port: 0, data: desc); }