Security Advisory mc security update

Advisory: RHSA-2004:464-09
Type: Security Advisory
Severity: Low
Issued on: 2005-01-05
Last updated on: 2005-01-05
Affected Products: Red Hat Enterprise Linux AS (v. 2.1)
Red Hat Enterprise Linux WS (v. 2.1)
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor
OVAL: N/A
CVEs (cve.mitre.org): CVE-2004-0494

Details

An updated mc package that resolves several shell escape security issues is
now available.

[Updated 5 January 2005]
Packages have been updated to include the gmc and mcserv packages which were
left out of the initial errata.

Midnight Commander (mc) is a visual shell much like a file manager.

Shell escape bugs have been discovered in several of the mc vfs backend
scripts. An attacker who is able to influence a victim to open a
specially-crafted URI using mc could execute arbitrary commands as the
victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2004-0494 to this issue.

Users of mc should upgrade to this updated package which contains
backported patches and is not vulnerable to this issue.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

Updated packages

Red Hat Enterprise Linux AS (v. 2.1)
SRPMS:
mc-4.5.51-36.4.src.rpm
File outdated by:  RHSA-2005:512		     afec2c565d6a6ddef751653eebaa3ad6
 
IA-32:
gmc-4.5.51-36.4.i386.rpm
File outdated by:  RHSA-2005:512		     565ad0abe3823a8c003e585ebc44556c
mc-4.5.51-36.4.i386.rpm
File outdated by:  RHSA-2005:512		     10f69a32fd981ffcb2c018e070ca9b62
mcserv-4.5.51-36.4.i386.rpm
File outdated by:  RHSA-2005:512		     100b1d71bd280502b5db3809b56f3a48
 
IA-64:
gmc-4.5.51-36.4.ia64.rpm
File outdated by:  RHSA-2005:512		     998718f8ed57261a5553abbfd9a0b44b
mc-4.5.51-36.4.ia64.rpm
File outdated by:  RHSA-2005:512		     662118226d4084bbe6e67f19f7918af1
mcserv-4.5.51-36.4.ia64.rpm
File outdated by:  RHSA-2005:512		     03e4390ff9254bdd57c08fdc7ca76f4a
 
Red Hat Enterprise Linux WS (v. 2.1)
SRPMS:
mc-4.5.51-36.4.src.rpm
File outdated by:  RHSA-2005:512		     afec2c565d6a6ddef751653eebaa3ad6
 
IA-32:
gmc-4.5.51-36.4.i386.rpm
File outdated by:  RHSA-2005:512		     565ad0abe3823a8c003e585ebc44556c
mc-4.5.51-36.4.i386.rpm
File outdated by:  RHSA-2005:512		     10f69a32fd981ffcb2c018e070ca9b62
mcserv-4.5.51-36.4.i386.rpm
File outdated by:  RHSA-2005:512		     100b1d71bd280502b5db3809b56f3a48
 
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor
SRPMS:
mc-4.5.51-36.4.src.rpm
File outdated by:  RHSA-2005:512		     afec2c565d6a6ddef751653eebaa3ad6
 
IA-64:
gmc-4.5.51-36.4.ia64.rpm
File outdated by:  RHSA-2005:512		     998718f8ed57261a5553abbfd9a0b44b
mc-4.5.51-36.4.ia64.rpm
File outdated by:  RHSA-2005:512		     662118226d4084bbe6e67f19f7918af1
mcserv-4.5.51-36.4.ia64.rpm
File outdated by:  RHSA-2005:512		     03e4390ff9254bdd57c08fdc7ca76f4a
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

127974 - CAN-2004-0494 extfs vfs vulnerability in mc


References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0494

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/