Multiple format string vulnerabilities in Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1, and 2.x before 2.3.2 allow remote attackers to have an unspecified impact via vectors involving (1) check scripts and (2) the Lintian::Schedule module.
Weakness
The product uses a function that accepts a format string as an argument, but the format string originates from an external source.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Lintian | Debian | 1.23.0 (including) | 1.23.0 (including) |
| Lintian | Debian | 1.23.1 (including) | 1.23.1 (including) |
| Lintian | Debian | 1.23.2 (including) | 1.23.2 (including) |
| Lintian | Debian | 1.23.3 (including) | 1.23.3 (including) |
| Lintian | Debian | 1.23.4 (including) | 1.23.4 (including) |
| Lintian | Debian | 1.23.5 (including) | 1.23.5 (including) |
| Lintian | Debian | 1.23.6 (including) | 1.23.6 (including) |
| Lintian | Debian | 1.23.7 (including) | 1.23.7 (including) |
| Lintian | Debian | 1.23.8 (including) | 1.23.8 (including) |
| Lintian | Debian | 1.23.9 (including) | 1.23.9 (including) |
| Lintian | Debian | 1.23.10 (including) | 1.23.10 (including) |
| Lintian | Debian | 1.23.11 (including) | 1.23.11 (including) |
| Lintian | Debian | 1.23.12 (including) | 1.23.12 (including) |
| Lintian | Debian | 1.23.13 (including) | 1.23.13 (including) |
| Lintian | Debian | 1.23.14 (including) | 1.23.14 (including) |
| Lintian | Debian | 1.23.15 (including) | 1.23.15 (including) |
| Lintian | Debian | 1.23.16 (including) | 1.23.16 (including) |
| Lintian | Debian | 1.23.17 (including) | 1.23.17 (including) |
| Lintian | Debian | 1.23.18 (including) | 1.23.18 (including) |
| Lintian | Debian | 1.23.19 (including) | 1.23.19 (including) |
| Lintian | Debian | 1.23.20 (including) | 1.23.20 (including) |
| Lintian | Debian | 1.23.22 (including) | 1.23.22 (including) |
| Lintian | Debian | 1.23.23 (including) | 1.23.23 (including) |
| Lintian | Debian | 1.23.24 (including) | 1.23.24 (including) |
| Lintian | Debian | 1.23.25 (including) | 1.23.25 (including) |
| Lintian | Debian | 1.23.26 (including) | 1.23.26 (including) |
| Lintian | Debian | 1.23.27 (including) | 1.23.27 (including) |
| Lintian | Debian | 1.23.28 (including) | 1.23.28 (including) |
| Lintian | Debian | 1.24.0 (including) | 1.24.0 (including) |
| Lintian | Debian | 1.24.1 (including) | 1.24.1 (including) |
| Lintian | Debian | 1.24.2 (including) | 1.24.2 (including) |
| Lintian | Debian | 1.24.2.1 (including) | 1.24.2.1 (including) |
| Lintian | Debian | 2.0-rc1 (including) | 2.0-rc1 (including) |
| Lintian | Debian | 2.0-rc2 (including) | 2.0-rc2 (including) |
| Lintian | Debian | 2.1.0 (including) | 2.1.0 (including) |
| Lintian | Debian | 2.1.1 (including) | 2.1.1 (including) |
| Lintian | Debian | 2.1.2 (including) | 2.1.2 (including) |
| Lintian | Debian | 2.1.3 (including) | 2.1.3 (including) |
| Lintian | Debian | 2.1.4 (including) | 2.1.4 (including) |
| Lintian | Debian | 2.1.5 (including) | 2.1.5 (including) |
| Lintian | Debian | 2.1.6 (including) | 2.1.6 (including) |
| Lintian | Debian | 2.2.0 (including) | 2.2.0 (including) |
| Lintian | Debian | 2.2.1 (including) | 2.2.1 (including) |
| Lintian | Debian | 2.2.2 (including) | 2.2.2 (including) |
| Lintian | Debian | 2.2.3 (including) | 2.2.3 (including) |
| Lintian | Debian | 2.2.4 (including) | 2.2.4 (including) |
| Lintian | Debian | 2.2.5 (including) | 2.2.5 (including) |
| Lintian | Debian | 2.2.6 (including) | 2.2.6 (including) |
| Lintian | Debian | 2.2.7 (including) | 2.2.7 (including) |
| Lintian | Debian | 2.2.8 (including) | 2.2.8 (including) |
| Lintian | Debian | 2.2.9 (including) | 2.2.9 (including) |
| Lintian | Debian | 2.2.10 (including) | 2.2.10 (including) |
| Lintian | Debian | 2.2.11 (including) | 2.2.11 (including) |
| Lintian | Debian | 2.2.12 (including) | 2.2.12 (including) |
| Lintian | Debian | 2.2.13 (including) | 2.2.13 (including) |
| Lintian | Debian | 2.2.14 (including) | 2.2.14 (including) |
| Lintian | Debian | 2.2.15 (including) | 2.2.15 (including) |
| Lintian | Debian | 2.2.16 (including) | 2.2.16 (including) |
| Lintian | Debian | 2.2.18 (including) | 2.2.18 (including) |
| Lintian | Debian | 2.3.0 (including) | 2.3.0 (including) |
| Lintian | Debian | 2.3.1 (including) | 2.3.1 (including) |
| Lintian | Ubuntu | dapper | * |
| Lintian | Ubuntu | hardy | * |
| Lintian | Ubuntu | intrepid | * |
| Lintian | Ubuntu | jaunty | * |
| Lintian | Ubuntu | karmic | * |
| Lintian | Ubuntu | upstream | * |
Potential Mitigations
Related Attack Patterns
References
- http://git.debian.org/?p=lintian/lintian.git%3Ba=commit%3Bh=c8d01f062b3e5137cf65196760b079a855c75e00
- http://git.debian.org/?p=lintian/lintian.git%3Ba=commit%3Bh=fbe0c92b2ef7e360d13414bf40d6af5507d0c86d
- http://packages.debian.org/changelogs/pool/main/l/lintian/lintian_2.3.2/changelog
- http://packages.qa.debian.org/l/lintian/news/20100128T015554Z.html
- http://secunia.com/advisories/38375
- http://secunia.com/advisories/38379
- http://www.debian.org/security/2010/dsa-1979
- http://www.securityfocus.com/bid/37975
- http://www.ubuntu.com/usn/USN-891-1
- http://git.debian.org/?p=lintian/lintian.git%3Ba=commit%3Bh=c8d01f062b3e5137cf65196760b079a855c75e00
- http://git.debian.org/?p=lintian/lintian.git%3Ba=commit%3Bh=fbe0c92b2ef7e360d13414bf40d6af5507d0c86d
- http://packages.debian.org/changelogs/pool/main/l/lintian/lintian_2.3.2/changelog
- http://packages.qa.debian.org/l/lintian/news/20100128T015554Z.html
- http://secunia.com/advisories/38375
- http://secunia.com/advisories/38379
- http://www.debian.org/security/2010/dsa-1979
- http://www.securityfocus.com/bid/37975
- http://www.ubuntu.com/usn/USN-891-1