Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-189-1:4C0C9
HistoryNov 06, 2002 - 5:10 p.m.

[SECURITY] [DSA 189-1] New luxman packages fix local root exploit

2002-11-0617:10:06
lists.debian.org
4

0.001 Low

EPSS

Percentile

25.6%

JSON

Debian Security Advisory DSA 189-1 [email protected]
http://www.debian.org/security/ Martin Schulze
November 6th, 2002 http://www.debian.org/security/faq

Package : luxman
Vulnerability : local root exploit
Problem-Type : local
Debian-specific: yes
CVE Id : CAN-2002-1245

iDEFENSE reported about a vulnerability in LuxMan, a maze game for
GNU/Linux, similar to the PacMan arcade game. When successfully
exploited it a local attacker with read write access to the Memory,
leading to a local root compromise in many ways, examples of which
include scanning the file for fragments of the master password file
and modifying kernel memory to re-map system calls.

This problem has been fixed in version 0.41-17.1 the current stable
distribution (woody) and in version 0.41-19 for the unstable
distribution (sid). The old stable distribution (potato) is not
affected since it doesn't contain a luxman package

We recommend that you upgrade your luxman package immediately.

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 3.0 alias woody

This package is only available for the IA-32 architecture.

Source archives:

http://security.debian.org/pool/updates/main/l/luxman/luxman_0.41-17.1.dsc
  Size/MD5 checksum:      570 6f07d15342abd605028d3cfde3dd1e6a
http://security.debian.org/pool/updates/main/l/luxman/luxman_0.41-17.1.diff.gz
  Size/MD5 checksum:     6955 0ede91f130be23bd67383f47e6b51ccb
http://security.debian.org/pool/updates/main/l/luxman/luxman_0.41.orig.tar.gz
  Size/MD5 checksum:   268279 aa389327578e2d65f3f5035193e407cb

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/l/luxman/luxman_0.41-17.1_i386.deb
  Size/MD5 checksum:   290680 e9aa37d421068e828307ef5c816ad72d

These files will probably be moved into the stable distribution on
its next revision.

For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: [email protected]
Package info: `apt-cache show <pkg>' and http://packages.debian.org/&lt;pkg&gt;

OSVersionArchitecturePackageVersionFilename
Debian3allluxman< 0.41-17.1luxman_0.41-17.1_all.deb
Debian3i386luxman< 0.41-17.1luxman_0.41-17.1_i386.deb

Related

nessus 1
cvelist 1
nvd 1
cve 1
debian 1
osv 1
openvas 2
nessus
nessus
Debian DSA-189-1 : luxman - local root exploit
2004-09-29 00:00:00
cvelist
cvelist
CVE-2002-1245
2004-09-01 04:00:00
nvd
nvd
CVE-2002-1245
2002-11-12 05:00:00
cve
cve
CVE-2002-1245
2004-09-01 04:00:00
debian
debian
[SECURITY] [DSA 189-1] New luxman packages fix local root exploit
2002-11-06 17:10:06
osv
osv
luxman - local root exploit
2002-11-06 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-189)
2008-01-17 00:00:00
Debian Security Advisory DSA 189-1 (luxman)
2008-01-17 00:00:00

0.001 Low

EPSS

Percentile

25.6%

JSON
Related for DEBIAN:DSA-189-1:4C0C9
nessus1cvelist1nvd1cve1debian1osv1openvas2