• info
• discussion
• exploit
• solution
• references

PAM_LDAP And Squid_Auth_LDAP Logging Format String Vulnerabilities

Solution:
Red Hat has released a new advisory RHSA-2002:175-16 which obsoletes RHSA-2002:084. Updated nss_ldap RPMs are available. See the attached advisories for details on obtaining fixes.

The SCO Group has released an advisory for OpenLinux. Updated pam_ldap RPMs available.

Gentoo has released a security advisory detailing steps to fix vulnerable systems. Gentoo users are advised to perform the following actions:

emerge rsync
emerge pam_ldap
emerge clean

Mandrake has released an advisory (MDKSA-2002:075) containing upgrades which address this issue. Mandrake users should see the attached advisory for details on obtaining fixes.

Fixes available:


Padl Software pam_ldap Build 143

• SCO pam_ldap-144-1.i386.rpm
  ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2002-041.0/R PMS/pam_ldap-144-1.i386.rpm


• SCO pam_ldap-144-1.i386.rpm
  ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2002-04 1.0/RPMS/pam_ldap-144-1.i386.rpm


• SCO pam_ldap-144-1.i386.rpm
  ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Server/CSSA-2002-041.0/RPM S/pam_ldap-144-1.i386.rpm


• SCO pam_ldap-144-1.i386.rpm
  ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Workstation/CSSA-2002-041. 0/RPMS/pam_ldap-144-1.i386.rpm

Padl Software nss_ldap Build 107

• Mandrake nss_ldap-202-1.2mdk.i586.rpm
  Mandrake Linux 8.0.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake nss_ldap-202-1.2mdk.ppc.rpm
  Mandrake Linux 8.0/PPC.
  http://www.mandrakesecure.net/en/ftp.php

Padl Software nss_ldap Build 189

• Red Hat authconfig-4.1.19.2-1.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/authconfig-4.1.19.2-1.i386.rpm


• Red Hat authconfig-4.1.19.2-1.ia64.rpm
  ftp://updates.redhat.com/7.2/en/os/ia64/authconfig-4.1.19.2-1.ia64.rpm


• Red Hat nss_ldap-189-1.6.2.1.alpha.rpm
  ftp://updates.redhat.com/6.2/en/os/alpha/nss_ldap-189-1.6.2.1.alpha.rp m


• Red Hat nss_ldap-189-1.6.2.1.i386.rpm
  ftp://updates.redhat.com/6.2/en/os/i386/nss_ldap-189-1.6.2.1.i386.rpm


• Red Hat nss_ldap-189-1.6.2.1.sparc.rpm
  ftp://updates.redhat.com/6.2/en/os/sparc/nss_ldap-189-1.6.2.1.sparc.rp m


• Red Hat nss_ldap-189-1.6.2.alpha.rpm
  ftp://updates.redhat.com/6.2/en/os/alpha/nss_ldap-189-1.6.2.alpha.rpm


• Red Hat nss_ldap-189-1.6.2.i386.rpm
  ftp://updates.redhat.com/6.2/en/os/i386/nss_ldap-189-1.6.2.i386.rpm


• Red Hat nss_ldap-189-1.6.2.sparc.rpm
  ftp://updates.redhat.com/6.2/en/os/sparc/nss_ldap-189-1.6.2.sparc.rpm


• Red Hat nss_ldap-189-1.7.alpha.rpm
  ftp://updates.redhat.com/7.0/en/os/alpha/nss_ldap-189-1.7.alpha.rpm


• Red Hat nss_ldap-189-1.7.alpha.rpm
  ftp://updates.redhat.com/7.1/en/os/alpha/nss_ldap-189-1.7.alpha.rpm


• Red Hat nss_ldap-189-1.7.i386.rpm
  ftp://updates.redhat.com/7.0/en/os/i386/nss_ldap-189-1.7.i386.rpm


• Red Hat nss_ldap-189-1.7.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/nss_ldap-189-1.7.i386.rpm


• Red Hat nss_ldap-189-1.7.ia64.rpm
  ftp://updates.redhat.com/7.1/en/os/ia64/nss_ldap-189-1.7.ia64.rpm


• Red Hat nss_ldap-189-2.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/nss_ldap-189-2.i386.rpm


• Red Hat nss_ldap-189-2.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/nss_ldap-189-2.i386.rpm


• Red Hat nss_ldap-189-2.ia64.rpm
  ftp://updates.redhat.com/7.2/en/os/ia64/nss_ldap-189-2.ia64.rpm


• RedHat nss_ldap-189-3.6.alpha.rpm
  ftp://updates.redhat.com/6.2/en/os/alpha/nss_ldap-189-3.6.alpha.rpm


• RedHat nss_ldap-189-3.6.i386.rpm
  ftp://updates.redhat.com/6.2/en/os/i386/nss_ldap-189-3.6.i386.rpm


• RedHat nss_ldap-189-3.6.sparc.rpm
  ftp://updates.redhat.com/6.2/en/os/sparc/nss_ldap-189-3.6.sparc.rpm


• RedHat nss_ldap-189-3.7.alpha.rpm
  ftp://updates.redhat.com/7.0/en/os/alpha/nss_ldap-189-3.7.alpha.rpm


• RedHat nss_ldap-189-3.7.alpha.rpm
  ftp://updates.redhat.com/7.1/en/os/alpha/nss_ldap-189-3.7.alpha.rpm


• RedHat nss_ldap-189-3.7.i386.rpm
  ftp://updates.redhat.com/7.0/en/os/i386/nss_ldap-189-3.7.i386.rpm


• RedHat nss_ldap-189-3.7.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/nss_ldap-189-3.7.i386.rpm


• RedHat nss_ldap-189-3.7.ia64.rpm
  ftp://updates.redhat.com/7.1/en/os/ia64/nss_ldap-189-3.7.ia64.rpm


• RedHat nss_ldap-189-4.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/nss_ldap-189-4.i386.rpm


• RedHat nss_ldap-189-4.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/nss_ldap-189-4.i386.rpm


• RedHat nss_ldap-189-4.ia64.rpm
  ftp://updates.redhat.com/7.2/en/os/ia64/nss_ldap-189-4.ia64.rpm

Padl Software nss_ldap Build 122

• Mandrake nss_ldap-202-1.2mdk.i586.rpm
  Linux-Mandrake 7.2.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake nss_ldap-202-1.2mdk.i586.rpm
  Mandrake Single Network Firewall 7.2.
  http://www.mandrakesecure.net/en/ftp.php

Padl Software nss_ldap Build 172

• Mandrake nss_ldap-202-1.1mdk.i586.rpm
  Mandrake Linux 8.1.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake nss_ldap-202-1.1mdk.ia64.rpm
  Mandrake Linux 8.1/IA64.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake pam_ldap-156-1.1mdk.i586.rpm
  Mandrake Linux 8.1.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake pam_ldap-156-1.1mdk.ia64.rpm
  Mandrake Linux 8.1/IA64.
  http://www.mandrakesecure.net/en/ftp.php

Padl Software nss_ldap Build 194

• Mandrake nss_ldap-202-1.1mdk.i586.rpm
  Mandrake Linux 9.0.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake pam_ldap-156-1.1mdk.i586.rpm
  Mandrake Linux 9.0.
  http://www.mandrakesecure.net/en/ftp.php

Padl Software nss_ldap Build 173

• Mandrake nss_ldap-202-1.1mdk.i586.rpm
  Mandrake Linux 8.2.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake nss_ldap-202-1.1mdk.ppc.rpm
  Mandrake Linux 8.2/PPC.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake pam_ldap-156-1.1mdk.i586.rpm
  Mandrake Linux 8.2.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake pam_ldap-156-1.1mdk.ppc.rpm
  Mandrake Linux 8.2/PPC.
  http://www.mandrakesecure.net/en/ftp.php