[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[linux-security] cookie handling flaw in kdelibs

To: linux-security@sfu.ca
Subject: [linux-security] cookie handling flaw in kdelibs
From: Martin Siegert <siegert@sfu.ca>
Date: Mon, 5 Apr 2004 12:46:07 -0700
User-Agent: Mutt/1.4.1i

Topic
=====
Cookie handling flaw in konqueror (kdelibs)

Problem Description
===================
Flaws have been found in the cookie path handling between a number of Web
browsers and servers.  The HTTP cookie standard allows a Web server
supplying a cookie to a client to specify a subset of URLs on the origin
server to which the cookie applies.  Web servers such as Apache do not
filter returned cookies and assume that the client will only send back
cookies for requests that fall within the server-supplied subset of URLs.
However, by supplying URLs that use path traversal (/../) and character
encoding, it is possible to fool many browsers into sending a cookie to a
path outside of the originally-specified subset.

Affected Versions
=================
KDE versions prior to 3.1.3

Solution
========
upgrade KDE to version 3.1.3 or later or upgrade kdelibs to a patched
version for your distribution

RedHat 9
--------
rpm -Fvh kdelibs-3.1-13.i386.rpm kdelibs-devel-3.1-13.i386.rpm

SFU-1.0 (RedHat 7.3)
--------------------
[packages available from ftp://ftp.sfu.ca/pub/linux/1.0/RPMS/]

rpm -Fvh kdelibs-3.0.5a-0.73.3.i386.rpm kdelibs-devel-3.0.5a-0.73.3.i386.rpm

Debian 3.0 (woody)
------------------
upgrade to kdelibs3_2.2.2-13.woody.9_i386.deb,
           kdelibs3-bin_2.2.2-13.woody.9_i386.deb,
           kdelibs3-cups_2.2.2-13.woody.9_i386.deb,
           kdelibs-dev_2.2.2-13.woody.9_i386.deb,
           libarts_2.2.2-13.woody.9_i386.deb,
           libarts-dev_2.2.2-13.woody.9_i386.deb,
           libkmid_2.2.2-13.woody.9_i386.deb,
           libkmid-alsa_2.2.2-13.woody.9_i386.deb,
           libkmid-dev_2.2.2-13.woody.9_i386.deb,
           kdelibs3-crypto_2.2.2-6woody3_i386.deb,
           kdelibs3-doc_2.2.2-13.woody.9_all.deb

Mandrake 9.1
------------
rpm -Fvh kdelibs-3.1-58.3.91mdk.i586.rpm \
         kdelibs-common-3.1-58.3.91mdk.i586.rpm \
         kdelibs-devel-3.1-58.3.91mdk.i586.rpm \
         kdelibs-static-devel-3.1-58.3.91mdk.i586.rpm

Prev by Date: [linux-security] DoS attacks in openssl
Next by Date: [linux-security] multiple flaws in mozilla
Prev by thread: [linux-security] multiple flaws in mozilla
Next by thread: [linux-security] DoS attacks in openssl
Index(es):
- Date
- Thread