TITLE: Ubuntu update for lsb-rpm SECUNIA ADVISORY ID: SA17516 VERIFY ADVISORY: http://secunia.com/advisories/17516/ CRITICAL: Moderately critical IMPACT: DoS, System access WHERE: >From remote OPERATING SYSTEM: Ubuntu Linux 4.10 http://secunia.com/product/4491/ Ubuntu Linux 5.04 http://secunia.com/product/5036/ DESCRIPTION: Ubuntu has issued an update for lsb-rpm. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. For more information: SA15949 SA16137 SOLUTION: Apply updated packages. -- Ubuntu 4.10 (Warty Warthog) -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/r/rpm/rpm_4.0.4-28ubuntu2.1.diff.gz Size/MD5: 104152 3512e5a5982e80eec9c47097c1abcab0 http://security.ubuntu.com/ubuntu/pool/main/r/rpm/rpm_4.0.4-28ubuntu2.1.dsc Size/MD5: 743 75a216bf04376b2965fdc6f421da9117 http://security.ubuntu.com/ubuntu/pool/main/r/rpm/rpm_4.0.4.orig.tar.gz Size/MD5: 5865692 b0c3093d2f0d850760e59ac1db9bf152 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/r/rpm/librpm-dev_4.0.4-28ubuntu2.1_amd64.deb Size/MD5: 484306 8d65173dc64656d07670eb76ef50c48c http://security.ubuntu.com/ubuntu/pool/main/r/rpm/librpm4_4.0.4-28ubuntu2.1_amd64.deb Size/MD5: 382618 ab876104c24d65d40a42f4464b2cc2a4 http://security.ubuntu.com/ubuntu/pool/universe/r/rpm/lsb-rpm_4.0.4-28ubuntu2.1_amd64.deb Size/MD5: 879240 1e904758215537cb71185114d2d2fdce http://security.ubuntu.com/ubuntu/pool/main/r/rpm/rpm_4.0.4-28ubuntu2.1_amd64.deb Size/MD5: 519706 be983d50f61cfd0260617aa1a5364686 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/r/rpm/librpm-dev_4.0.4-28ubuntu2.1_i386.deb Size/MD5: 437176 6b366219315af863fbdaea691badc6e1 http://security.ubuntu.com/ubuntu/pool/main/r/rpm/librpm4_4.0.4-28ubuntu2.1_i386.deb Size/MD5: 359618 b395c5dc497897b59e64d389b0f06060 http://security.ubuntu.com/ubuntu/pool/universe/r/rpm/lsb-rpm_4.0.4-28ubuntu2.1_i386.deb Size/MD5: 815882 f4c442e7de8efd84c6f649debcd34200 http://security.ubuntu.com/ubuntu/pool/main/r/rpm/rpm_4.0.4-28ubuntu2.1_i386.deb Size/MD5: 516424 a16cc0c0303275537df571a683b48c61 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/r/rpm/librpm-dev_4.0.4-28ubuntu2.1_powerpc.deb Size/MD5: 509710 89a59a25b06bd82d9b279ce44bff12b5 http://security.ubuntu.com/ubuntu/pool/main/r/rpm/librpm4_4.0.4-28ubuntu2.1_powerpc.deb Size/MD5: 386056 3f02d5ed65df1a5924d0b58f61966e03 http://security.ubuntu.com/ubuntu/pool/universe/r/rpm/lsb-rpm_4.0.4-28ubuntu2.1_powerpc.deb Size/MD5: 906620 b81695bb99a459690415851b704016b8 http://security.ubuntu.com/ubuntu/pool/main/r/rpm/rpm_4.0.4-28ubuntu2.1_powerpc.deb Size/MD5: 525366 8a6775242836a0ff0f031508a9b7f1f6 -- Ubuntu 5.04 (Hoary Hedgehog) -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/r/rpm/rpm_4.0.4-29ubuntu1.1.diff.gz Size/MD5: 104605 ded8ebf7a2e2f17f3c73eb761b2e688d http://security.ubuntu.com/ubuntu/pool/main/r/rpm/rpm_4.0.4-29ubuntu1.1.dsc Size/MD5: 743 6cc9d90aa7fc16b8f4b4bc0943e0999c http://security.ubuntu.com/ubuntu/pool/main/r/rpm/rpm_4.0.4.orig.tar.gz Size/MD5: 5865692 b0c3093d2f0d850760e59ac1db9bf152 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/r/rpm/librpm-dev_4.0.4-29ubuntu1.1_amd64.deb Size/MD5: 484510 031b93a22f11539c77bdde4c7a7fd942 http://security.ubuntu.com/ubuntu/pool/main/r/rpm/librpm4_4.0.4-29ubuntu1.1_amd64.deb Size/MD5: 382960 f3d2183092c18d4d955dc9f47b8bfd85 http://security.ubuntu.com/ubuntu/pool/universe/r/rpm/lsb-rpm_4.0.4-29ubuntu1.1_amd64.deb Size/MD5: 917666 fbed813e6386fb855bad364297231dcd http://security.ubuntu.com/ubuntu/pool/main/r/rpm/rpm_4.0.4-29ubuntu1.1_amd64.deb Size/MD5: 246620 0d4597422332fe23e596e6843399d5a2 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/r/rpm/librpm-dev_4.0.4-29ubuntu1.1_i386.deb Size/MD5: 437506 c9d45c2c612849165cb24c4a696b2d99 http://security.ubuntu.com/ubuntu/pool/main/r/rpm/librpm4_4.0.4-29ubuntu1.1_i386.deb Size/MD5: 360084 62ff35425b9a1282faf601a8b6a42a46 http://security.ubuntu.com/ubuntu/pool/universe/r/rpm/lsb-rpm_4.0.4-29ubuntu1.1_i386.deb Size/MD5: 817326 f02954eba6d51835d4687ab8f201a94a http://security.ubuntu.com/ubuntu/pool/main/r/rpm/rpm_4.0.4-29ubuntu1.1_i386.deb Size/MD5: 242144 3aa62cae004a512e77e5400b4dcdad58 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/r/rpm/librpm-dev_4.0.4-29ubuntu1.1_powerpc.deb Size/MD5: 510066 f1e4b85c2a191683779cc924713c6089 http://security.ubuntu.com/ubuntu/pool/main/r/rpm/librpm4_4.0.4-29ubuntu1.1_powerpc.deb Size/MD5: 386662 9ffd067e2f4909b51252fb821e18f918 http://security.ubuntu.com/ubuntu/pool/universe/r/rpm/lsb-rpm_4.0.4-29ubuntu1.1_powerpc.deb Size/MD5: 892954 d7aede34a0ed6bcc492bbfe264f23d08 http://security.ubuntu.com/ubuntu/pool/main/r/rpm/rpm_4.0.4-29ubuntu1.1_powerpc.deb Size/MD5: 249702 0aa79e831af41fdf66149a03524ea95f ORIGINAL ADVISORY: http://www.ubuntulinux.org/usn/usn-151-4 OTHER REFERENCES: SA15949: http://secunia.com/advisories/15949/ SA16137: http://secunia.com/advisories/16137/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------