=====================================================================
                                    CERT-Renater

                         Note d'Information No. 2006/VULN584
_____________________________________________________________________

DATE                      : 22/12/2006

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Systems running links2.

======================================================================

- - ------------------------------------------------------------------------
Debian Security Advisory DSA-1240-1                  security@debian.org
http://www.debian.org/security/                               Steve Kemp
December 21, 2006
- - ------------------------------------------------------------------------

Package        : links2
Vulnerability  : insufficient escaping
Problem type   : remote
Debian-specific: no
CVE Id(s)      : CVE-2006-5925
Debian Bug     : 400718

Teemu Salmela discovered that the links2 character mode web browser
performs insufficient sanitising of smb:// URIs, which might lead to the
execution of arbitrary shell commands.

For the stable distribution (sarge) this problem has been fixed in
version 2.1pre16-1sarge1.

For the upcoming stable distribution (etch) this problem has been
fixed in version 2.1pre26-1.

For the unstable distribution (sid) this problem has been fixed in
version 2.1pre26-1.

We recommend that you upgrade your links2 package.

Upgrade instructions
- - --------------------

wget url
         will fetch the file for you
dpkg -i file.deb
         will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
         will update the internal database
apt-get upgrade
         will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian 3.1 (stable)
- - -------------------

Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, m68k, 
mips, mipsel, powerpc, s390 and sparc.

Source archives:

 
http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1.diff.gz
     Size/MD5 checksum:    28658 a83c79990bbfb6f9ec26d737f767ee90
   http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16.orig.tar.gz
     Size/MD5 checksum:  4217483 7baf4fc20cc244d80ead21cebff07d89
   http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1.dsc
     Size/MD5 checksum:      841 ed4853334b7eebef055271df06cdcd7a

alpha architecture (DEC Alpha)

 
http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1_alpha.deb
     Size/MD5 checksum:  2110324 b3633fddb199c45339d3837bb0a519a0

amd64 architecture (AMD x86_64 (AMD64))

 
http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1_amd64.deb
     Size/MD5 checksum:  2040922 5fb402e6a833709741d20238346c7597

arm architecture (ARM)

 
http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1_arm.deb
     Size/MD5 checksum:  1996004 c7c79ddcb82d5758668ed71d74b9685f

i386 architecture (Intel ia32)

 
http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1_i386.deb
     Size/MD5 checksum:  1997426 4c1ef611e31c57583f7471653962a84a

m68k architecture (Motorola Mc680x0)

 
http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1_m68k.deb
     Size/MD5 checksum:  1904084 e5c777a07eaa88f4367b51d88c556a14

mips architecture (MIPS (Big Endian))

 
http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1_mips.deb
     Size/MD5 checksum:  2034596 22854de6eaf3aa1e392291760e85e5e8


   These files will probably be moved into the stable distribution on
   its next update.

- - 
---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

======================================================================

           =========================================================
           Les serveurs de référence du CERT-Renater
           http://www.urec.fr/securite
           http://www.cru.fr/securite
           http://www.renater.fr
           =========================================================
           + CERT-RENATER          | tel : 01-53-94-20-44          +
           + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
           + 75013 Paris           | email: certsvp@renater.fr     +
           =========================================================