---------------------------------------------------------------------- BETA test the new Secunia Personal Software Inspector! The Secunia PSI detects installed software on your computer and categorises it as either Insecure, End-of-Life, or Up-To-Date. Effectively enabling you to focus your attention on software installations where more secure versions are available from the vendors. Download the free PSI BETA from the Secunia website: https://psi.secunia.com/ ---------------------------------------------------------------------- TITLE: Mandriva update for id3lib SECUNIA ADVISORY ID: SA26793 VERIFY ADVISORY: http://secunia.com/advisories/26793/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system OPERATING SYSTEM: Mandriva Linux 2007 http://secunia.com/product/12165/ DESCRIPTION: Mandriva has issued an update for id3lib. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges. For more information: SA26536 SOLUTION: Apply updated packages. -- Mandriva Linux 2007 -- 89ededb20e4a560dc4a15bc028bde937 2007.0/i586/id3lib-3.8.3-10.1mdv2007.0.i586.rpm 911e99bcbd3adc8d49175fa12297d6dd 2007.0/i586/libid3_3.8_3-3.8.3-10.1mdv2007.0.i586.rpm d792ca59dcbfbba0ec75742383dd0740 2007.0/i586/libid3_3.8_3-devel-3.8.3-10.1mdv2007.0.i586.rpm b5263e43bcc2c3e52cb96ce70769d663 2007.0/i586/libid3_3.8_3-static-devel-3.8.3-10.1mdv2007.0.i586.rpm 8046c1d4ed9191e1ea40caf4b7ba20f5 2007.0/SRPMS/id3lib-3.8.3-10.1mdv2007.0.src.rpm -- Mandriva Linux 2007/X86_64 -- 330799502bac0ea9cdf3e87a89836b61 2007.0/x86_64/id3lib-3.8.3-10.1mdv2007.0.x86_64.rpm 1be980ac246eee399e840933912c38dd 2007.0/x86_64/lib64id3_3.8_3-3.8.3-10.1mdv2007.0.x86_64.rpm 9c89408b8df0db6e0525818d72179b28 2007.0/x86_64/lib64id3_3.8_3-devel-3.8.3-10.1mdv2007.0.x86_64.rpm a46d3015c2b8281d89adcd6463b74fd0 2007.0/x86_64/lib64id3_3.8_3-static-devel-3.8.3-10.1mdv2007.0.x86_64.rpm 8046c1d4ed9191e1ea40caf4b7ba20f5 2007.0/SRPMS/id3lib-3.8.3-10.1mdv2007.0.src.rpm ORIGINAL ADVISORY: http://www.mandriva.com/security/advisories?name=MDKSA-2007:180 OTHER REFERENCES: SA26536: http://secunia.com/advisories/26536/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------