From noreply at frugalware.org Thu Sep 6 10:03:26 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 10:03:29 2007 Subject: [Frugalware-security] [ FSA-252 ] php Message-ID: <20070906080326.8BE7213A4203@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-252 Date: 2007-09-06 Package: php Vulnerable versions: <= 5.2.3-1terminus2 Unaffected versions: >= 5.2.3-1terminus3 Related bugreport: http://bugs.frugalware.org/task/2267 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3806 Description =========== shinnai has discovered a vulnerability in PHP, which can be exploited by malicious, local users to bypass certain security restrictions. The vulnerability is caused due to an error in the handling of an uninitialized structure inside the "glob()" function. This can be exploited to execute arbitrary code, which may lead to security restrictions (e.g. the "disable_functions" directive) being bypassed. Updated Packages ================ Check if you have php installed: # pacman-g2 -Q php If found, then you should upgrade to the latest version: # pacman-g2 -Sy php -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG37ROZ7NElSD1VhkRAl2VAJ99CGUTTmRv++OEKkY/xRy01TQYsgCgj8cG hmxtZztpI9Vwo3GSq9OzLTA= =U6bo -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 6 10:20:46 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 10:20:48 2007 Subject: [Frugalware-security] [ FSA-253 ] poppler Message-ID: <20070906082046.C57F713A4204@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-253 Date: 2007-09-06 Package: poppler Vulnerable versions: <= 0.5.4-2 Unaffected versions: >= 0.5.4-3terminus1 Related bugreport: http://bugs.frugalware.org/task/2300 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387 Description =========== A vulnerability has been reported in Poppler, which potentially can be exploited by malicious people to compromise an application using the library. The vulnerability is caused due to the use of vulnerable Xpdf code, which may allow the execution of arbitrary code. Updated Packages ================ Check if you have poppler installed: # pacman-g2 -Q poppler If found, then you should upgrade to the latest version: # pacman-g2 -Sy poppler -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG37heZ7NElSD1VhkRAoaoAJ4giTS4PNYbotl/q5ANb8sV8phNhwCfQ3tl dDMt/MMP4Mxu+Q2JCIxiexk= =bTeO -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 6 10:29:30 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 10:29:32 2007 Subject: [Frugalware-security] [ FSA-254 ] opera Message-ID: <20070906082930.D7AFE13A41FB@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-254 Date: 2007-09-06 Package: opera Vulnerable versions: <= 9.22-1terminus1 Unaffected versions: >= 9.23-1terminus1 Related bugreport: http://bugs.frugalware.org/task/2369 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4367 Description =========== A vulnerability has been reported in Opera, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an unspecified error when processing JavaScript code and can result in a virtual function call using an invalid pointer. This can be exploited to execute arbitrary code by e.g. tricking a user into visiting a malicious website. Updated Packages ================ Check if you have opera installed: # pacman-g2 -Q opera If found, then you should upgrade to the latest version: # pacman-g2 -Sy opera -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG37pqZ7NElSD1VhkRAopbAJ0RuEbTbc+Md1hAHSsy9roXfK74DACcDIAN htkC2pDfgacydcQLDWqa9XA= =x6W3 -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 6 10:34:33 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 10:34:35 2007 Subject: [Frugalware-security] [ FSA-255 ] tar Message-ID: <20070906083433.E39F413A41FD@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-255 Date: 2007-09-06 Package: tar Vulnerable versions: <= 1.16.1-1 Unaffected versions: >= 1.16.1-2terminus1 Related bugreport: http://bugs.frugalware.org/task/2376 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4131 Description =========== A vulnerability has been reported in GNU tar, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an input validation error when extracting tar archives. This can be exploited to extract files to arbitrary locations outside the specified directory with the permissions of the user running GNU tar by using the "//.." directory traversal sequence in a specially crafted tar archive. Updated Packages ================ Check if you have tar installed: # pacman-g2 -Q tar If found, then you should upgrade to the latest version: # pacman-g2 -Sy tar -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG37uZZ7NElSD1VhkRAnX/AJ42nrTeWYUuNUz5fFVEjJzWTbzZRgCfZ6g1 gyA9iOt+OBvo2zkiP3uwpLE= =KyI7 -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 6 11:29:00 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 11:29:06 2007 Subject: [Frugalware-security] [ FSA-256 ] tor Message-ID: <20070906092900.D791B13A4204@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-256 Date: 2007-09-06 Package: tor Vulnerable versions: <= 0.1.2.14-1terminus1 Unaffected versions: >= 0.1.2.16-1terminus1 Related bugreport: http://bugs.frugalware.org/task/2365 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4174 Description =========== A vulnerability has been reported in Tor, which can be exploited by malicious people to bypass certain security restrictions. The vulnerability is caused due to the ControlPort (localhost:9051) handling commands without authentication when the first command was not a successful "authenticate" command. This can be exploited to e.g. modify the "torrc" file, when a user views a malicious web page containing a specially crafted POST request or via a malicious tor exit node. Successful exploitation may compromise a user's anonymity, but requires that the ControlPort is enabled. Updated Packages ================ Check if you have tor installed: # pacman-g2 -Q tor If found, then you should upgrade to the latest version: # pacman-g2 -Sy tor -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG38hcZ7NElSD1VhkRAgwDAJ9uh6qg4yo4Q7k/vv80noOiSOcunACeKHoP PdYhX4/U23BjDoYvC9xH/5w= =PUVs -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 6 11:35:40 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 11:35:41 2007 Subject: [Frugalware-security] [ FSA-257 ] po4a Message-ID: <20070906093540.AC7F813A41FB@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-257 Date: 2007-09-06 Package: po4a Vulnerable versions: <= 0.30-1 Unaffected versions: >= 0.30-2terminus1 Related bugreport: http://bugs.frugalware.org/task/2374 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4462 Description =========== A security issue has been reported in po4a, which can be exploited by malicious, local users to perform certain actions with escalated privileges. The security issue is caused due to the "gettextize()" function in lib/Locale/Po4a/Po.pm creating the file "/tmp/gettextization.failed.po" in an insecure manner. This can be exploited via symlink attacks to e.g. overwrite arbitrary files with the permissions of the user running the po4a-gettextize tool. Updated Packages ================ Check if you have po4a installed: # pacman-g2 -Q po4a If found, then you should upgrade to the latest version: # pacman-g2 -Sy po4a -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG38nsZ7NElSD1VhkRAsuWAJ4oDBeF/y0+bnOeHae55P/wn+XVEgCfW0kO y6Ptq0CDbIHT7MFe2qKCpb4= =YCeJ -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 6 11:58:05 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 11:58:07 2007 Subject: [Frugalware-security] [ FSA-258 ] apache Message-ID: <20070906095805.867C013A4205@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-258 Date: 2007-09-06 Package: apache Vulnerable versions: <= 2.2.4-2terminus1 Unaffected versions: >= 2.2.4-2terminus2 Related bugreport: http://bugs.frugalware.org/task/2381 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3847 Description =========== A vulnerability has been reported in the Apache mod_proxy module, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to the improper handling of date headers within the "ap_proxy_date_canon()" function in proxy_util.c. This can be exploited to cause a DoS by sending specially crafted requests to the affected server. Successful exploitation results in a crash if a threaded Multi-Processing Module is used on servers where a reverse or forward proxy is configured. Updated Packages ================ Check if you have apache installed: # pacman-g2 -Q apache If found, then you should upgrade to the latest version: # pacman-g2 -Sy apache -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG388tZ7NElSD1VhkRApTBAJ42IG0o0ESllPyRkVF1ucZVn91B8QCfQcMi 3678DZX4S+VxgFZCfM61nCE= =D4pS -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 6 19:42:03 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 19:42:05 2007 Subject: [Frugalware-security] [ FSA-259 ] thunderbird Message-ID: <20070906174203.072C213A421C@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-259 Date: 2007-09-06 Package: thunderbird Vulnerable versions: <= 1.5.0.12-1terminus1 Unaffected versions: >= 1.5.0.13-1terminus1 Related bugreport: http://bugs.frugalware.org/task/2264 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3670 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3734 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3735 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3844 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3845 Description =========== Some vulnerabilities have been reported in Mozilla Thunderbird, which can potentially be exploited to compromise a user's system. An error when registering a URI handler potentially allows to execute arbitrary code. Various errors in the Javascript engine can be exploited to cause memory corruption and potentially to execute arbitrary code. A vulnerability is caused due to an error within the handling of "about:blank" pages loaded by chrome in an addon. This can be exploited to execute script code under chrome privileges by e.g. clicking on a link opened in an "about:blank" window created and populated in a certain ways by an addon. Updated Packages ================ Check if you have thunderbird installed: # pacman-g2 -Q thunderbird If found, then you should upgrade to the latest version: # pacman-g2 -Sy thunderbird -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG4DvqZ7NElSD1VhkRAhMqAJ9XbzxBKGJOttaZJ5PL6uKKdlluuQCfcPpv 7CrAp+ER0jfbony0t0z/sxQ= =f4+2 -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 6 19:55:03 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 19:55:04 2007 Subject: [Frugalware-security] [ FSA-260 ] kdelibs Message-ID: <20070906175503.20F7113A421F@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-260 Date: 2007-09-06 Package: kdelibs Vulnerable versions: <= 3.5.6-3 Unaffected versions: >= 3.5.6-4terminus1 Related bugreport: http://bugs.frugalware.org/task/2265 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3820 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4224 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4225 Description =========== Robert Swiecki has discovered a vulnerability in Konqueror, which can be exploited by malicious people to conduct spoofing attacks. The vulnerability is caused due to an error when processing the "setInterval()" function and can be exploited to display arbitrary content while showing the URL of a trusted web site in the address bar. The vulnerability is caused due to an error in the handling of the "data:" URI scheme. This can be exploited to display arbitrary content while showing the URL of a trusted web site in the address bar when a user follows a specially crafted link. Updated Packages ================ Check if you have kdelibs installed: # pacman-g2 -Q kdelibs If found, then you should upgrade to the latest version: # pacman-g2 -Sy kdelibs -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG4D72Z7NElSD1VhkRAn8nAKCC0Qw9smlsS4OvxjglpeRW+oY0xQCeOYoi rqE4ZKpbNZTpXQ2oh8RnGEs= =HyHj -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 6 19:59:26 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 19:59:28 2007 Subject: [Frugalware-security] [ FSA-261 ] kdebase Message-ID: <20070906175926.3161313A421D@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-261 Date: 2007-09-06 Package: kdebase Vulnerable versions: <= 3.5.6-2 Unaffected versions: >= 3.5.6-3terminus1 Related bugreport: http://bugs.frugalware.org/task/2265 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3820 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4224 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4225 Description =========== Robert Swiecki has discovered a vulnerability in Konqueror, which can be exploited by malicious people to conduct spoofing attacks. The vulnerability is caused due to an error when processing the "setInterval()" function and can be exploited to display arbitrary content while showing the URL of a trusted web site in the address bar. The vulnerability is caused due to an error in the handling of the "data:" URI scheme. This can be exploited to display arbitrary content while showing the URL of a trusted web site in the address bar when a user follows a specially crafted link. Updated Packages ================ Check if you have kdebase installed: # pacman-g2 -Q kdebase If found, then you should upgrade to the latest version: # pacman-g2 -Sy kdebase -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG4D/+Z7NElSD1VhkRAnXlAJ9UYmSfkQbIad3aKjl+iJUGqsEmKQCglISb 3ViBedSVkvlEb7/IH5ZIWso= =0U4H -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 6 20:16:39 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 20:16:42 2007 Subject: [Frugalware-security] [ FSA-262 ] asterisk Message-ID: <20070906181639.94AF013A421C@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-262 Date: 2007-09-06 Package: asterisk Vulnerable versions: <= 1.4.8-1terminus1 Unaffected versions: >= 1.4.11-1terminus1 Related bugreport: http://bugs.frugalware.org/task/2328 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4103 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4280 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4455 Description =========== Three vulnerabilities has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). 1) The vulnerability is caused due to the IAX2 Channel Driver improperly processing "NEW" packets. This can be exploited to allocate resources that are never freed by sending multiple "NEW" packets for valid extensions to the server. Successful exploitation results in a DoS, but requires that the IAX2 Channel Driver is configured to allow unauthenticated calls. 2) The vulnerability is caused due to the Skinny channel driver (chan_skinny) improperly processing packets. This can be exploited to crash the application by sending a "CAPABILITIES_RES_MESSAGE" packet with the capabilities count greater than the total number of items in the "capabilities_res_message" array. 3) The vulnerability is caused due to the SIP Dialog History of SIP channel driver (chan_sip) recording all history items (88 bytes per item) in memory. This can be exploited to cause a DoS due to memory exhaustion by causing a high amount of logged items. Updated Packages ================ Check if you have asterisk installed: # pacman-g2 -Q asterisk If found, then you should upgrade to the latest version: # pacman-g2 -Sy asterisk -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG4EQHZ7NElSD1VhkRAqO3AJ40BEVfK3ko12X15+PwvyhWcATkdACcD1tl SzQy6YWfqLdX85BWjSERT2I= =KhgP -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 6 20:21:34 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 20:21:36 2007 Subject: [Frugalware-security] [ FSA-263 ] id3lib Message-ID: <20070906182134.B2EB713A421C@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-263 Date: 2007-09-06 Package: id3lib Vulnerable versions: <= 3.8.3-3 Unaffected versions: >= 3.8.3-4terminus1 Related bugreport: http://bugs.frugalware.org/task/2372 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4460 Description =========== Nikolaus Schulz has reported a security issue in id3lib, which can be exploited by malicious, local users to gain escalated privileges. The security issue is caused due to the "RenderV2ToFile()" function in src/tag_file.cpp handling temporary files in an insecure manner. This can be exploited to execute arbitrary commands with escalated privileges (usually root user). Updated Packages ================ Check if you have id3lib installed: # pacman-g2 -Q id3lib If found, then you should upgrade to the latest version: # pacman-g2 -Sy id3lib -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG4EUuZ7NElSD1VhkRAm4sAJ94ojyNCRsKtRbhL66O0yFn51SaVgCggrlz 0A11u5xyj5+HKDV2Mjtp5nc= =kEV4 -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 6 21:22:14 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 21:22:15 2007 Subject: [Frugalware-security] [ FSA-264 ] terminal Message-ID: <20070906192214.0E23913A421F@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-264 Date: 2007-09-06 Package: terminal Vulnerable versions: <= 0.2.6-1 Unaffected versions: >= 0.2.6-2terminus1 Related bugreport: http://bugs.frugalware.org/task/2256 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3770 Description =========== Lasse Karkkainen has reported a security issue in Xfce Terminal, which can be exploited by malicious people to inject shell commands. The "terminal_helper_execute()" function in terminal/terminal.c uses "/bin/sh -c" to spawn the browser process. This can be used to disclose sensitive information or execute shell commands by e.g. tricking a user into opening a malicious link using the "Open Link" functionality. Updated Packages ================ Check if you have terminal installed: # pacman-g2 -Q terminal If found, then you should upgrade to the latest version: # pacman-g2 -Sy terminal -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG4FNmZ7NElSD1VhkRAmduAJ97kha+snDa1rsIEChwdOybdZcVpgCdFmWk e6FQzxHEsPqewZkQx1EeOhw= =PDID -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 6 21:40:29 2007 From: noreply at frugalware.org (voroskoi) Date: Thu Sep 6 21:40:32 2007 Subject: [Frugalware-security] [ FSA-265 ] sudo Message-ID: <20070906194029.C7A1913A421F@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-265 Date: 2007-09-06 Package: sudo Vulnerable versions: <= 1.6.8p12-3 Unaffected versions: >= 1.6.8p12-4terminus1 Related bugreport: http://bugs.frugalware.org/task/2373 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3149 Description =========== A vulnerability has been reported in Sudo, which can be exploited by malicious, local users to bypass certain security restrictions. The vulnerability is caused due to improper error handling within the Kerberos 5 authentication mechanism. This can be exploited to execute commands allowed by the Sudo configuration without proper authentication. Updated Packages ================ Check if you have sudo installed: # pacman-g2 -Q sudo If found, then you should upgrade to the latest version: # pacman-g2 -Sy sudo -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG4FetZ7NElSD1VhkRAmomAKCjA1LahFSa3HO+qf97gTI5uu7qAwCePsv/ je34M4msCuEjquObK+YeTjk= =gNmH -----END PGP SIGNATURE----- From noreply at frugalware.org Fri Sep 7 13:32:26 2007 From: noreply at frugalware.org (voroskoi) Date: Fri Sep 7 13:32:29 2007 Subject: [Frugalware-security] [ FSA-266 ] tetex Message-ID: <20070907113226.652BA13A422E@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-266 Date: 2007-09-07 Package: tetex Vulnerable versions: <= 3.0-10 Unaffected versions: >= 3.0-11terminus1 Related bugreport: http://bugs.frugalware.org/task/2310 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3193 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0650 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387 Description =========== A vulnerability has been reported in teTeX, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the use of vulnerable Xpdf code. Updated Packages ================ Check if you have tetex installed: # pacman-g2 -Q tetex If found, then you should upgrade to the latest version: # pacman-g2 -Sy tetex -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG4TbKZ7NElSD1VhkRAjZ4AJwOO1Ak7L5uAHq7VgwINkMvyGLrdACfWsyC akj+20G3Ag/DhZiubL4YY88= =/D7y -----END PGP SIGNATURE----- From noreply at frugalware.org Fri Sep 7 13:41:40 2007 From: noreply at frugalware.org (voroskoi) Date: Fri Sep 7 13:41:43 2007 Subject: [Frugalware-security] [ FSA-267 ] gdm Message-ID: <20070907114140.6B12413A422F@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-267 Date: 2007-09-07 Package: gdm Vulnerable versions: <= 2.18.0-1 Unaffected versions: >= 2.18.0-2terminus1 Related bugreport: http://bugs.frugalware.org/task/2329 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3381 Description =========== A vulnerability has been discovered in GNOME Display Manager, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability is caused due to the GDM daemon improperly handling NULL values returned by the "g_strsplit" function. This can be exploited to crash the GNOME Display Manager by sending specially crafted requests to the local GDM socket. Updated Packages ================ Check if you have gdm installed: # pacman-g2 -Q gdm If found, then you should upgrade to the latest version: # pacman-g2 -Sy gdm -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG4Tj0Z7NElSD1VhkRAsrEAJ9nb0mG8e+aTTtnSh9W7+xwer3ZugCfSxOt LX8/6QOQrS8F/Buk9XppO5k= =1V3o -----END PGP SIGNATURE----- From noreply at frugalware.org Fri Sep 7 13:48:21 2007 From: noreply at frugalware.org (voroskoi) Date: Fri Sep 7 13:48:23 2007 Subject: [Frugalware-security] [ FSA-268 ] python Message-ID: <20070907114821.B0E5313A422F@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-268 Date: 2007-09-07 Package: python Vulnerable versions: <= 2.5-3terminus1 Unaffected versions: >= 2.5-3terminus2 Related bugreport: http://bugs.frugalware.org/task/2382 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4559 Description =========== Some vulnerabilities have been reported in the Python tarfile module, which can be exploited by malicious people to compromise a vulnerable system. The vulnerabilities are caused due to input validation errors when extracting tar archives. This can be exploited to extract files to arbitrary locations outside the specified directory with the permissions of the application using the tarfile module by using the "../" directory traversal sequence or malicious symlinks in a specially crafted tar archive. Updated Packages ================ Check if you have python installed: # pacman-g2 -Q python If found, then you should upgrade to the latest version: # pacman-g2 -Sy python -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG4TqFZ7NElSD1VhkRAkZmAKCXylNFa5bOHSIkCmhhqw3DbI9BqACfdO47 ZD1AGVRXmAgkXcZV4vmcLVM= =jzwA -----END PGP SIGNATURE----- From noreply at frugalware.org Thu Sep 13 18:17:16 2007 From: noreply at frugalware.org (vmiklos) Date: Thu Sep 13 18:17:28 2007 Subject: [Frugalware-security] [ FSA-269 ] kernel Message-ID: <20070913161716.5F9E013A4022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-269 Date: 2007-09-13 Package: kernel Vulnerable versions: <= 2.6.20-5terminus8 Unaffected versions: >= 2.6.20-5terminus9 Related bugreport: http://bugs.frugalware.org/task/2366 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4308 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3843 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3851 Description =========== Security issues has been reported in the Linux Kernel, which can be exploited by malicious, local users to bypass certain security restrictions. 1) The security issue is caused due to the AACRAID driver not correctly checking the privileges for IOCTLs. This can be exploited to perform potentially dangerous operations by sending certain IOCTLs to the driver. 2) The weakness is caused due to the Linux Kernel not correctly enforcing the defined signing options when mounting a CIFS file system. This may weaken the security and can be leveraged to perform further attacks. 3) The vulnerability is caused due to an error within the driver for i965G chipsets and above, which can be exploited to e.g. gain escalated privileges by modifying physical memory. Updated Packages ================ Check if you have kernel installed: # pacman-g2 -Q kernel If found, then you should upgrade to the latest version: # pacman-g2 -Sy kernel -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG6WKLZ7NElSD1VhkRAvhzAJ9KSt5/UJHL0nuNnWksJWo8NmfWFwCghacM wq+ecoPcRAxPuPaA1Qg1Vic= =XqDX -----END PGP SIGNATURE----- From noreply at frugalware.org Tue Sep 18 01:00:44 2007 From: noreply at frugalware.org (vmiklos) Date: Tue Sep 18 01:00:48 2007 Subject: [Frugalware-security] [ FSA-270 ] asterisk Message-ID: <20070917230044.62D43168800F@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-270 Date: 2007-09-18 Package: asterisk Vulnerable versions: <= 1.4.11-1terminus1 Unaffected versions: >= 1.4.11-1terminus2 Related bugreport: http://bugs.frugalware.org/task/2377 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4521 Description =========== A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error when handling emails with a malformed MIME body. This can be exploited to crash the service by sending a specially crafted email to a user and tricking him into listening to the voicemail. Successful exploitation requires that the IMAP backend for the voicemail feature is used. Reportedly, other backends are not affected. Updated Packages ================ Check if you have asterisk installed: # pacman-g2 -Q asterisk If found, then you should upgrade to the latest version: # pacman-g2 -Sy asterisk -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG7wcbZ7NElSD1VhkRAod6AJ4lfaZCOBcifZXT3OauXj8r/YT2YQCfQJlG YElE8w71GTAYXV98wvHBJsQ= =KaUq -----END PGP SIGNATURE----- From noreply at frugalware.org Tue Sep 18 20:47:27 2007 From: noreply at frugalware.org (voroskoi) Date: Tue Sep 18 20:47:36 2007 Subject: [Frugalware-security] [ FSA-271 ] realplayer Message-ID: <20070918184727.61A82168800F@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-271 Date: 2007-09-18 Package: realplayer Vulnerable versions: <= 10.0.8.805_20060718-1 Unaffected versions: >= 10.0.9.809_20070726-1terminus1 Related bugreport: http://bugs.frugalware.org/task/2220 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3410 Description =========== A vulnerability has been reported in RealPlayer and Helix Player, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in the wallclock functionality in "SmilTimeValue::parseWallClockValue()" when handling time formats. This can be exploited to cause a stack-based buffer overflow via an SMIL file with an overly long, specially-crafted time string. Successful exploitation allows execution of arbitrary code when a user e.g. visits a malicious website. Updated Packages ================ Check if you have realplayer installed: # pacman-g2 -Q realplayer If found, then you should upgrade to the latest version: # pacman-g2 -Sy realplayer -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG8B0/Z7NElSD1VhkRAihJAKCHImH4VInhltyqbH9YmJe8P2jfjgCeJo3E wtFJpyIxt1O8TKmUSja/aRA= =AvLf -----END PGP SIGNATURE----- From noreply at frugalware.org Tue Sep 18 20:52:02 2007 From: noreply at frugalware.org (voroskoi) Date: Tue Sep 18 20:52:04 2007 Subject: [Frugalware-security] [ FSA-272 ] wordpress Message-ID: <20070918185202.2AEE51678012@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-272 Date: 2007-09-18 Package: wordpress Vulnerable versions: <= 2.2.1-1terminus1 Unaffected versions: >= 2.2.2-1terminus1 Related bugreport: http://bugs.frugalware.org/task/2363 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4139 Description =========== Benjamin Flesch has discovered a vulnerability in WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "style" parameter in wp-admin/upload.php (when "post_id" is set to a negative integer value) is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. Successful exploitation requires that the target user has valid author or higher credentials. Updated Packages ================ Check if you have wordpress installed: # pacman-g2 -Q wordpress If found, then you should upgrade to the latest version: # pacman-g2 -Sy wordpress -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG8B5SZ7NElSD1VhkRAvbFAJ0XFkM6d4y+JLKUo7W5aJKzXTW7TQCggipu h0PJjFEQOh1pxJ8heOH+lbI= =ce25 -----END PGP SIGNATURE----- From noreply at frugalware.org Tue Sep 18 21:01:59 2007 From: noreply at frugalware.org (voroskoi) Date: Tue Sep 18 21:02:02 2007 Subject: [Frugalware-security] [ FSA-273 ] gftp Message-ID: <20070918190159.97FFC1678013@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-273 Date: 2007-09-18 Package: gftp Vulnerable versions: <= 2.0.18-2 Unaffected versions: >= 2.0.18-3terminus1 Related bugreport: http://bugs.frugalware.org/task/2368 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3961 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3962 Description =========== Some vulnerabilities have been reported in gFTP, which potentially can be exploited by malicious people to compromise a user's system. The vulnerabilities are caused due to the use of vulnerable fsplib code, which may allow the execution of arbitrary code. Updated Packages ================ Check if you have gftp installed: # pacman-g2 -Q gftp If found, then you should upgrade to the latest version: # pacman-g2 -Sy gftp -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG8CCnZ7NElSD1VhkRAjG6AJ0UrkS+PShkYt0SoMYcCAjHcTZirwCeKnl9 mvKeRRfOPAiKisTzYrH76a4= =4Jl1 -----END PGP SIGNATURE----- From noreply at frugalware.org Tue Sep 18 21:14:05 2007 From: noreply at frugalware.org (voroskoi) Date: Tue Sep 18 21:14:08 2007 Subject: [Frugalware-security] [ FSA-274 ] clamav Message-ID: <20070918191405.9C1E0168800E@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-274 Date: 2007-09-18 Package: clamav Vulnerable versions: <= 0.91.1-1terminus1 Unaffected versions: >= 0.91.2-1terminus1 Related bugreport: http://bugs.frugalware.org/task/2375 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4510 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4560 Description =========== Some vulnerabilities have been reported in ClamAV, which can potentially be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system. 1) A NULL-pointer dereference error exists within the "cli_scanrtf()" function in libclamav/rtf.c. This can potentially be exploited to crash ClamAV via a specially crafted RTF file. 2) A NULL-pointer dereference error exists within the "cli_html_normalise()" function in libclamav/htmlnorm.c. This can potentially be exploited to crash ClamAV via a specially crafted HTML file containing a "data" URL scheme. 3) The recipient address extracted from email messages is not properly sanitised before being used in a call to "popen()" when executing sendmail. This can be exploited to execute arbitrary code with the privileges of the clamav-milter process by sending an email with a specially crafted recipient address to the affected system. Successful exploitation requires that clamav-milter is started with the "black hole" mode activated. Updated Packages ================ Check if you have clamav installed: # pacman-g2 -Q clamav If found, then you should upgrade to the latest version: # pacman-g2 -Sy clamav -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG8CN9Z7NElSD1VhkRAj1oAJ9ufflZnLZI3RiWT1mrWRmi6whQdwCeIFMD 7kv7c8IPaLo3gax/AIDQUAI= =c/Tp -----END PGP SIGNATURE----- From noreply at frugalware.org Tue Sep 18 21:24:40 2007 From: noreply at frugalware.org (voroskoi) Date: Tue Sep 18 21:24:44 2007 Subject: [Frugalware-security] [ FSA-275 ] php Message-ID: <20070918192440.6CD601678017@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-275 Date: 2007-09-18 Package: php Vulnerable versions: <= 5.2.3-1terminus3 Unaffected versions: >= 5.2.4-1terminus1 Related bugreport: http://bugs.frugalware.org/task/2383 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3996 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3378 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3997 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4652 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4658 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4659 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4670 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4657 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4662 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3998 Description =========== Some vulnerabilities have been reported in PHP, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions. 1) An error with unknown impact exists within the "money_format()" function when processing "%i" and "%n" tokens. 2) An unspecified error exists within the "zend_alter_ini_entry()" function. This can be exploited to trigger a memory_limit interruption. 3) Two integer overflow errors exist within the "gdImageCreate()" and "gdImageCreateTrueColor()" functions in ext/gd/libgd/gd.c. These can be exploited to cause a heap-based buffer overflow via overly large integer values passed as parameters to e.g. the "imagecreatetruecolor()" PHP function. 4) Two integer overflow errors exist within the "gdImageCopyResized()" function in ext/gd/libgd/gd.c. These can be exploited to cause a heap-based buffer overflow via overly large integer values passed as parameters to the "imagecopyresized()" or "imagecopyresampled()" PHP functions. Successful exploitation of vulnerabilities #3 and #4 may allow execution of arbitrary code, which may lead to security restrictions (e.g. the "disable_functions" directive) being bypassed, but requires that PHP is configured to use gd. 5) An error exists within the handling of SQL queries containing "LOCAL INFILE" inside the MySQL and MySQLi extensions. This can be exploited to bypass the "open_basedir" and "safe_mode" directives. 6) An error exists when processing "session_save_path()" and "ini_set()" functions called from a ".htaccess" file. This can be exploited to bypass the "open_basedir" and "safe_mode" directives. 7) An unspecified error exists within the "glob()" function. This can be exploited to bypass the "open_basedir" directive. 8) An unspecified error exists within the session extension. This can potentially be exploited to bypass the "open_basedir" directive when the session file is a symlink. Updated Packages ================ Check if you have php installed: # pacman-g2 -Q php If found, then you should upgrade to the latest version: # pacman-g2 -Sy php -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG8CX4Z7NElSD1VhkRAhvcAJ9ADZ5fQmP7PY/LtzSIYDwnsIZrQACgpWt7 ieoECiQsz7wNV4sIjY00Q/0= =HjxT -----END PGP SIGNATURE----- From noreply at frugalware.org Sun Sep 23 13:48:29 2007 From: noreply at frugalware.org (vmiklos) Date: Sun Sep 23 13:48:39 2007 Subject: [Frugalware-security] [ FSA-276 ] qt Message-ID: <20070923114829.8E33513A4056@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-276 Date: 2007-09-23 Package: qt Vulnerable versions: <= 3.3.7-5terminus1 Unaffected versions: >= 3.3.7-5terminus2 Related bugreport: http://bugs.frugalware.org/task/2414 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4137 Description =========== A vulnerability has been reported in Qt, which can potentially be exploited by malicious people to cause a DoS (Denial of Service) or to compromise an application using the library. The vulnerability is caused due to an off-by-one error within the "QUtf8Decoder::toUnicode()" function ("QUtf8Codec::convertToUnicode()" in Qt 4.x) in codecs/qutfcodec.cpp. This can be exploited to cause a one-byte heap-based buffer overflow via a specially crafted unicode string. Updated Packages ================ Check if you have qt installed: # pacman-g2 -Q qt If found, then you should upgrade to the latest version: # pacman-g2 -Sy qt -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG9lKNZ7NElSD1VhkRAhWxAJ0UUYf3Y+DWAzybbCIILXjP+jSXKQCfZJSR LAi7DJg4kOoQgdp5LFhXQ2s= =PnNk -----END PGP SIGNATURE----- From noreply at frugalware.org Sun Sep 23 13:51:40 2007 From: noreply at frugalware.org (vmiklos) Date: Sun Sep 23 13:51:43 2007 Subject: [Frugalware-security] [ FSA-277 ] xorg-server Message-ID: <20070923115140.E719413A4055@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-277 Date: 2007-09-23 Package: xorg-server Vulnerable versions: <= 1.2.0-2terminus1 Unaffected versions: >= 1.2.0-2terminus2 Related bugreport: http://bugs.frugalware.org/task/2411 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4730 Description =========== A vulnerability has been reported in X.org X11, which potentially can be exploited by malicious, local users to gain escalated privileges. The vulnerability is caused due to a boundary error within the composite extension when copying data from pixmaps with different bit depths. This can be exploited to cause a buffer overflow by copying data between specially crafted pixmaps. Updated Packages ================ Check if you have xorg-server installed: # pacman-g2 -Q xorg-server If found, then you should upgrade to the latest version: # pacman-g2 -Sy xorg-server -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG9lNMZ7NElSD1VhkRAnwFAJoCZz3PblQVtgymGg/ErCGHK2rwkgCbBFLs Xxh5LjYGbxjmtp0yNlf4YSU= =pAxu -----END PGP SIGNATURE----- From noreply at frugalware.org Sun Sep 23 13:57:18 2007 From: noreply at frugalware.org (vmiklos) Date: Sun Sep 23 13:57:21 2007 Subject: [Frugalware-security] [ FSA-278 ] lighttpd Message-ID: <20070923115718.7132613A4056@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-278 Date: 2007-09-23 Package: lighttpd Vulnerable versions: <= 1.4.16-1terminus1 Unaffected versions: >= 1.4.16-1terminus2 Related bugreport: http://bugs.frugalware.org/task/2410 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4727 Description =========== Mattias Bengtsson and Philip Olausson have reported a vulnerability in lighttpd, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to an error in the mod_fastcgi extension when handling headers in a HTTP request. This can be exploited to e.g. add or replace PHP headers (e.g. SCRIPT_FILENAME) via a HTTP request containing an overly long header. Updated Packages ================ Check if you have lighttpd installed: # pacman-g2 -Q lighttpd If found, then you should upgrade to the latest version: # pacman-g2 -Sy lighttpd -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG9lSeZ7NElSD1VhkRAsoaAJ9yoNzEuiDpqcCteKsL0H9Qk1xvZgCfT4cb 6zKEwUvm1Y/W2g0MnNJtOEs= =CBGg -----END PGP SIGNATURE----- From noreply at frugalware.org Sun Sep 23 14:00:11 2007 From: noreply at frugalware.org (vmiklos) Date: Sun Sep 23 14:00:14 2007 Subject: [Frugalware-security] [ FSA-279 ] rsync Message-ID: <20070923120011.83E1313A4055@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-279 Date: 2007-09-23 Package: rsync Vulnerable versions: <= 2.6.9-1 Unaffected versions: >= 2.6.9-2terminus1 Related bugreport: http://bugs.frugalware.org/task/2371 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4091 Description =========== Sebastian Krahmer has reported a vulnerability in rsync, which can potentially be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to an off-by-one error within the "f_name()" function in flist.c and can be exploited to cause a one-byte stack-based buffer overflow via an overly long directory name. Updated Packages ================ Check if you have rsync installed: # pacman-g2 -Q rsync If found, then you should upgrade to the latest version: # pacman-g2 -Sy rsync -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG9lVLZ7NElSD1VhkRApcMAJ9boQ+Jrr5UUh2kI1J73yUVfH9AOwCaA82C gLQPiudO4aBpwdsKqJ5po1g= =Iy2Z -----END PGP SIGNATURE----- From noreply at frugalware.org Mon Sep 24 12:10:37 2007 From: noreply at frugalware.org (vmiklos) Date: Mon Sep 24 12:10:46 2007 Subject: [Frugalware-security] [ FSA-280 ] kdebase Message-ID: <20070924101037.E234F13A4115@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-280 Date: 2007-09-24 Package: kdebase Vulnerable versions: <= 3.5.6-3terminus1 Unaffected versions: >= 3.5.6-3terminus2 Related bugreport: http://bugs.frugalware.org/task/2430 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4569 Description =========== KDE has acknowledged a security issue in KDM, which can be exploited by malicious, local users to bypass certain security restrictions. The security issue is caused due to an error when checking the credentials during login, which can be exploited to log in to an account (potentially including "root") without specifying a valid password. Updated Packages ================ Check if you have kdebase installed: # pacman-g2 -Q kdebase If found, then you should upgrade to the latest version: # pacman-g2 -Sy kdebase -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iD8DBQFG940dZ7NElSD1VhkRAiNMAJ4lZnzVok24gtqtki1GlKmv63kNnwCeOhXf 7XLx7Mq/YvszmZPQCxRK5n8= =5I2G -----END PGP SIGNATURE-----