• info
• discussion
• exploit
• solution
• references

GNU Ed Symlink Vulnerability

Solution:
Affected vendors, including Mandrake, Conectiva, Debian, RedHat, Trustix and others have released new, fixed versions of the ed package.

Gentoo Linux has released advisory GLSA 200410-07 to address this issue. Users of affected packages are urged to execute the following commands with superuser privileges:
emerge sync
emerge -pv ">=sys-apps/ed-0.2-r4"
emerge ">=sys-apps/ed-0.2-r4"
Please see the referenced advisory for further information.


GNU Ed 2.15

• MandrakeSoft 6.0 i386 ed-0.2-15.1mdk.i586.rpm
  http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/ed-0.2-15.1mdk.i5 86.rpm


• MandrakeSoft 6.1 i386 ed-0.2-15.1mdk.i586.rpm
  http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/6.1/RPMS/ed-0.2-1 5.1mdk.i586.rpm


• MandrakeSoft 7.0 i386 ed-0.2-15.1mdk.i586.rpm
  http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/7.0/RPMS/ed-0.2-1 5.1mdk.i586.rpm


• MandrakeSoft 7.1 i386 ed-0.2-17.1mdk.i586.rpm
  http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/7.1/RPMS/ed-0.2-1 7.1mdk.i586.rpm


• MandrakeSoft 7.2 i386 ed-0.2-21.1mdk.i586.rpm
  http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/7.2/RPMS/ed-0.2-2 1.1mdk.i586.rpm

GNU Ed 2.18 .0

• Conectiva 4.0 i386 pam-0.72-23cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/4.0/i386/pam-0.72-23cl.i386.rpm


• Conectiva 4.0es pam-0.72-23cl.i386
  ftp://atualizacoes.conectiva.com.br/4.0es/i386/pam-0.72-23cl.i386.rpm


• Conectiva 4.1 pam-0.72-23cl.i386
  ftp://atualizacoes.conectiva.com.br/4.1/i386/pam-0.72-23cl.i386.rpm


• Conectiva 4.2 pam-0.72-23cl.i386
  ftp://atualizacoes.conectiva.com.br/4.2/i386/pam-0.72-23cl.i386.rpm


• Conectiva 5.0 pam-0.72-23cl.i386
  ftp://atualizacoes.conectiva.com.br/5.0/i386/pam-0.72-23cl.i386.rpm


• Conectiva 5.1 pam-0.72-23cl.i386
  ftp://atualizacoes.conectiva.com.br/5.1/i386/pam-0.72-23cl.i386.rpm


• Conectiva 6.0 pam-0.72-23cl.i386
  ftp://atualizacoes.conectiva.com.br/6.0/RPMS/pam-0.72-23cl.i386.rpm


• RedHat 6.0 ed-0.2-19.6x-alpha
  ftp://rpmfind.net/linux/redhat/updates/6.0/alpha//ed-0.2-19.6x.alpha.r pm


• RedHat 6.0 ed-0.2-19.6x-i386
  ftp://rpmfind.net/linux/redhat/updates/6.0/i386//ed-0.2-19.6x.i386.rpm


• RedHat 6.0 ed-0.2-19.6x-sparc
  ftp://rpmfind.net/linux/redhat/updates/6.0/sparc//ed-0.2-19.6x.sparc.r pm


• RedHat 6.1 ed-0.2-19.6x-alpha
  ftp://rpmfind.net/linux/redhat/updates/6.1/alpha//ed-0.2-19.6x.alpha.r pm


• RedHat 6.1 ed-0.2-19.6x-i386
  ftp://rpmfind.net/linux/redhat/updates/6.1/i386//ed-0.2-19.6x.i386.rpm


• RedHat 6.1 ed-0.2-19.6x-sparc
  ftp://rpmfind.net/linux/redhat/updates/6.1/sparc//ed-0.2-19.6x.sparc.r pm


• RedHat 6.2 ed-0.2-19.6x-alpha
  ftp://rpmfind.net/linux/redhat/updates/6.2/alpha//ed-0.2-19.6x.alpha.r pm


• RedHat 6.2 ed-0.2-19.6x-i386
  ftp://rpmfind.net/linux/redhat/updates/6.2/i386//ed-0.2-19.6x.i386.rpm


• RedHat 6.2 ed-0.2-19.6x-sparc
  ftp://rpmfind.net/linux/redhat/updates/6.2/sparc//ed-0.2-19.6x.sparc.r pm


• RedHat 7.0 ed-0.2-19-alpha
  ftp://rpmfind.net/linux/redhat/updates/7.0/alpha//ed-0.2-19.alpha.rpm


• RedHat 7.0 ed-0.2-19-i386
  ftp://rpmfind.net/linux/redhat/updates/7.0/i386//ed-0.2-19.i386.rpm