[liboping] Version 1.3.3 available

[Florian Forster]

Hi everybody,

Steve Kemp has identified an issue with oping, the ping application
included with liboping. Using the “-f” option, you can tell oping to
read the hostnames from a file instead of specifying them on the command
line. If liboping cannot resolve a hostname, oping will complain about
this on standard error.

The problem is that oping is often installed as SetUID-root. In this
case the program can open *any* file and will basically print its
content to STDERR as error messages.

The “-f” option has been changed to accept “-” (i. e. read from standard
input) as the only argument unless the real and effective user IDs
match.

Everybody who has installed oping with SetUID-root (so that normal users
can use the program) are advised to upgrade.


Download
--------

Version 1.3.3 is available from liboping's homepage or via these direct
download links:

  <http://verplant.org/liboping/files/liboping-1.3.3.tar.bz2>
  <http://verplant.org/liboping/files/liboping-1.3.3.tar.gz>

The Debian package 1.3.3-1 fixes this problem, too, and is available in
unstable.


ChangeLog
---------
2009-09-29, Version 1.3.3:
  * oping: Disable the “-f” option if the real and effective user IDs
    don't match. If that is the case the program is probably running
    SetUID and should not read foreign files. Unfortunately, dropping
    privileges before reading the file is not possible, because they are
    required for opening raw sockets.

    Reading from STDIN using “-f -” is still possible.

    Thanks to Steve Kemp for reporting this issue as Debian bug #548684.


Regards,
—octo
-- 
Florian octo Forster
Hacker in training
GnuPG: 0x91523C3D
http://verplant.org/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://mailman.verplant.org/pipermail/liboping/attachments/20091001/cb8b7b43/attachment.pgp