Note: This is an archival copy of Security Sun Alert 200026 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000021.1.
Date of Workaround Release
Date of Resolved Release
Sun Cobalt Legacy products and Sun Linux 5.0.3 systems ...
A remote unprivileged user may be able execute arbitrary code on Sun Cobalt Legacy products and Sun Linux 5.0.3 systems acting as Concurrent Versions System (CVS) servers with the privileges of the CVS server process due to a "double-free" vulnerability in the CVS server. The CVS server process normally runs with root privileges.
For more information:
2. Contributing Factors
This issue can occur in the following releases:
There are no reliable symptoms that would show the described issue has been exploited.
To work around the issue, disable the CVS server. Since Sun Cobalt products do not ship with CVS enabled and there is no standard startup script, the administrator of the host must determine where the CVS server is started and disable it.
This issue is addressed in the following releases:
Instructions for downloading the above packages can be found in
Sun Cobalt RaQ 4 Server
06-MAY-2003: Updated Resolution section. Resolved.
This solution has no attachment