From vmiklos at frugalware.org Tue Apr 1 14:45:08 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Tue Apr 1 14:45:09 2008 Subject: [Frugalware-security] [ FSA-403 ] horde-webmail Message-ID: <20080401124508.ABB2E1190A16@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-403 Date: 2008-04-01 Package: horde-webmail Vulnerable versions: <= 1.0.5-1 Unaffected versions: >= 1.0.6-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2910 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1284 Description =========== A vulnerability has been reported in various Horde products, which can be exploited by malicious users to disclose sensitive information and potentially compromise a vulnerable system. Input passed to the "theme" parameter is not properly sanitised before being used. This can be exploited to include arbitrary files from local resources, using directory traversal attacks and URL-encoded NULL bytes ("%00"). NOTE: Other attack vectors are also reported to exist. Successful exploitation may allow execution of arbitrary code, but requires valid user credentials. Updated Packages ================ Check if you have horde-webmail installed: # pacman-g2 -Q horde-webmail If found, then you should upgrade to the latest version: # pacman-g2 -Sy horde-webmail Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/403 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkfyLlQACgkQZ7NElSD1VhnuWACcCE+LHej6JJ9wEM8ELOAQoMVi UsUAnReVXWDjSv0gXQYZ6eq6kCJwLRbf =Ukv1 -----END PGP SIGNATURE----- From vmiklos at frugalware.org Tue Apr 1 14:46:29 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Tue Apr 1 14:46:30 2008 Subject: [Frugalware-security] [ FSA-399 ] xine-lib Message-ID: <20080401124629.BA63E1190A16@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-399 Date: 2008-03-24 Package: xine-lib Vulnerable versions: <= 1.1.10.1-1 Unaffected versions: >= 1.1.11-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2887 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0073 Description =========== Secunia Research has discovered a vulnerability in xine-lib, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error within the "sdpplin_parse()" function in input/libreal/sdpplin.c. This can be exploited to overwrite arbitrary memory regions via an overly large "streamid" SDP parameter included in a malicious RTSP stream. Successful exploitation allows execution of arbitrary code. Updated Packages ================ Check if you have xine-lib installed: # pacman-g2 -Q xine-lib If found, then you should upgrade to the latest version: # pacman-g2 -Sy xine-lib Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/399 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkfyLqUACgkQZ7NElSD1VhkCagCeNB3W6Cv57LEPSGU1ZlpirtwY plkAoImNl7fco1UR2AY1oZu0TNG43Lh8 =oe13 -----END PGP SIGNATURE----- From vmiklos at frugalware.org Tue Apr 1 14:46:57 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Tue Apr 1 14:46:59 2008 Subject: [Frugalware-security] [ FSA-400 ] bzip2 Message-ID: <20080401124657.3288A1190A16@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-400 Date: 2008-03-27 Package: bzip2 Vulnerable versions: <= 1.0.4-1 Unaffected versions: >= 1.0.5-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2903 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1372 Description =========== A vulnerability has been reported in bzip2, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error in the handling of malformed archives and can potentially be exploited to cause a DoS. Updated Packages ================ Check if you have bzip2 installed: # pacman-g2 -Q bzip2 If found, then you should upgrade to the latest version: # pacman-g2 -Sy bzip2 Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/400 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkfyLsEACgkQZ7NElSD1VhnyKgCfZpv72E1JYCF3MS9MRRFFHgOU Q2QAoI2kCMmVZi9CEvPz9JAeWE2c2yk1 =HMF8 -----END PGP SIGNATURE----- From vmiklos at frugalware.org Tue Apr 1 14:47:14 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Tue Apr 1 14:47:15 2008 Subject: [Frugalware-security] [ FSA-401 ] j2sdk Message-ID: <20080401124714.4E37A1190A16@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-401 Date: 2008-04-01 Package: j2sdk Vulnerable versions: <= 6-7 Unaffected versions: >= 6-8kalgan1 Related bugreport: http://bugs.frugalware.org/task/2845 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1185 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1186 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1187 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1188 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1189 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1190 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1191 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1192 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1193 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1194 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1195 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1196 Description =========== Some vulnerabilities have been reported in Sun Java, which can be exploited by malicious people to cause a DoS (Denial of Service), to bypass certain security restrictions, or to compromise a vulnerable system. 1) Two unspecified errors in the Java Runtime Environment Virtual Machine can be exploited by a malicious, untrusted applet to read and write local files and execute local applications. 2) An unspecified error in the Java Runtime Environment (JRE) when processing XSLT transformations can be exploited by untrusted applets or applications to e.g. read certain URL resources or potentially execute arbitrary code. 3) A boundary error exists in the "useEncodingDecl()" function when parsing the xml header character encoding attribute. This can be exploited to cause a stack-based buffer overflow and execute arbitrary code via a specially crafted JNLP file containing an overly long charset name in the xml header. 4) A boundary error exists in the "useEncodingDecl()" function when processing xml-based JNLP files for UTF8 characters. This can be exploited to cause a stack-based buffer overflow and execute arbitrary code via a specially crafted JNLP file containing overly long key name in the xml header. 5) A boundary error exist in Java Web Start, which can be exploited e.g. by an untrusted Java Web Start application to read and write local files and execute local applications. 6) An unspecified error in Java Web Start can be exploited by a malicious, untrusted applet to read and write local files or execute local applications. 7) An unspecified error in Java Web Start can be exploited by an untrusted Java Web Start application to create files on the system and run local applications with the privileges of the user running the untrusted Java Web Start application. 8) An unspecified error in the Java Plug-in can be exploited by an applet to bypass the same origin policy and to execute local applications. 9) Some errors in the Java Runtime Environment image parsing library within the processing of ICC profiles can be exploited to crash the JVM or to write local files and execute local applications. 10) An error in the Java Runtime Environment may allow java script code within a browser to make connections through Java APIs to network services on the local system. 11) A boundary error exists in Java Web Start in the processing of JNLP files, which can be exploited to cause a stack-based buffer overflow when a user visits a malicious web site. Updated Packages ================ Check if you have j2sdk installed: # pacman-g2 -Q j2sdk If found, then you should upgrade to the latest version: # pacman-g2 -Sy j2sdk Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/401 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkfyLtIACgkQZ7NElSD1VhmcPQCfcxOFqmOVmMr0zRhBA2nAmjX1 j9wAnAqwCNXLMs/omoyW2xN+PIuGqCxX =RkS+ -----END PGP SIGNATURE----- From vmiklos at frugalware.org Tue Apr 1 14:47:31 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Tue Apr 1 14:47:32 2008 Subject: [Frugalware-security] [ FSA-402 ] mplayer Message-ID: <20080401124731.413731190A16@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-402 Date: 2008-04-01 Package: mplayer Vulnerable versions: <= 1.0rc2-3 Unaffected versions: >= 1.0rc2-4kalgan1 Related bugreport: http://bugs.frugalware.org/task/2913 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1558 Description =========== k`sOSe has discovered a vulnerability in MPlayer, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an integer overflow error in the "sdpplin_parse()" function in stream/realrtsp/sdpplin.c. This can be exploited to overwrite arbitrary memory regions via an overly large "StreamCount" SDP parameter. Successful exploitation may allow execution of arbitrary code. Updated Packages ================ Check if you have mplayer installed: # pacman-g2 -Q mplayer If found, then you should upgrade to the latest version: # pacman-g2 -Sy mplayer Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/402 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkfyLuMACgkQZ7NElSD1VhkW3wCggabK41vsvbNhkSeaRyuQXcAx R2MAoKYiBEzqwgxcWJNXf5sA/wvoIJEC =WizC -----END PGP SIGNATURE----- From vmiklos at frugalware.org Tue Apr 1 14:55:18 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Tue Apr 1 14:55:19 2008 Subject: [Frugalware-security] [ FSA-404 ] phpmyadmin Message-ID: <20080401125518.EE24F1190A16@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-404 Date: 2008-04-01 Package: phpmyadmin Vulnerable versions: <= 2.11.5-1 Unaffected versions: >= 2.11.5.1-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2917 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1567 Description =========== im Hermann has discovered a vulnerability in phpMyAdmin, which can potentially be exploited by malicious users to disclose sensitive information. The MySQL username, password, and the Blowfish secret key are stored as plain text in session files. This can potentially be exploited e.g. by users on shared hosts to access that information. Updated Packages ================ Check if you have phpmyadmin installed: # pacman-g2 -Q phpmyadmin If found, then you should upgrade to the latest version: # pacman-g2 -Sy phpmyadmin Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/404 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkfyMLYACgkQZ7NElSD1Vhm+JgCeN2Zp/P10FEUgfJUN8UnlFxkC MlgAnRgZM6aXcv6XrbGpzV5HthZlm3SW =QKmh -----END PGP SIGNATURE----- From vmiklos at frugalware.org Tue Apr 1 14:56:46 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Tue Apr 1 14:56:47 2008 Subject: [Frugalware-security] [ FSA-403 ] horde-webmail Message-ID: <20080401125646.79C711190A16@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-403 Date: 2008-04-01 Package: horde-webmail Vulnerable versions: <= 1.0.5-1 Unaffected versions: >= 1.0.6-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2910 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1284 Description =========== A vulnerability has been reported in various Horde products, which can be exploited by malicious users to disclose sensitive information and potentially compromise a vulnerable system. Input passed to the "theme" parameter is not properly sanitised before being used. This can be exploited to include arbitrary files from local resources, using directory traversal attacks and URL-encoded NULL bytes ("%00"). NOTE: Other attack vectors are also reported to exist. Successful exploitation may allow execution of arbitrary code, but requires valid user credentials. Updated Packages ================ Check if you have horde-webmail installed: # pacman-g2 -Q horde-webmail If found, then you should upgrade to the latest version: # pacman-g2 -Sy horde-webmail Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/403 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkfyMQ4ACgkQZ7NElSD1VhlBfgCeK2V4GwAFovrS4CHS2CXY9EuK bFkAmwfHiPY/HOv25EIsT7gmMi8m16Bw =shV1 -----END PGP SIGNATURE----- From vmiklos at frugalware.org Tue Apr 1 23:50:46 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Tue Apr 1 23:50:48 2008 Subject: [Frugalware-security] [ FSA-405 ] openssh Message-ID: <20080401215046.263AE1190A3D@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-405 Date: 2008-04-01 Package: openssh Vulnerable versions: <= 4.7p1-3 Unaffected versions: >= 4.7p1-4kalgan1 Related bugreport: http://bugs.frugalware.org/task/2911 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1483 Description =========== A vulnerability has been discovered in OpenSSH, which can be exploited by malicious, local users to disclose sensitive information. The vulnerability is caused due to sshd improperly binding TCP ports on the local IPV6 interface if required ports on the IPV4 interface are in use. This can be exploited by a malicious, local user to intercept an X11 forwarding session by listening to a port used by sshd to forward the local X11 display (e.g. port 6010/TCP). Updated Packages ================ Check if you have openssh installed: # pacman-g2 -Q openssh If found, then you should upgrade to the latest version: # pacman-g2 -Sy openssh Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/405 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkfyrjYACgkQZ7NElSD1VhnMAgCgi+cdAeY1Av+b+zHnFdKPJqrn 5nQAoIzy7oDPcJ2do0/ZbxcSbMe6sUgq =Y2E7 -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 4 15:24:28 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 4 15:24:30 2008 Subject: [Frugalware-security] [ FSA-406 ] firefox Message-ID: <20080404132428.8278D1190543@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-406 Date: 2008-04-04 Package: firefox Vulnerable versions: <= 2.0.0.12-1 Unaffected versions: >= 2.0.0.13-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2907 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4879 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1195 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1233 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1234 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1235 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1236 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1237 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1238 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1240 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1241 Description =========== Some vulnerabilities and weaknesses have been reported in Mozilla Firefox, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, conduct cross-site scripting and phishing attacks, and potentially compromise a user's system. 1) An unspecified error in the handling of "XPCNativeWrappers" can lead to the execution of arbitrary Javascript code with the user's privileges via "setTimeout()" calls. 2) Various errors in the handling of Javascript code can be exploited to conduct cross-site scripting attacks or execute arbitrary code. 3) Various errors in the layout engine can be exploited to cause a memory corruption. 4) Various errors in the Javascript engine can be exploited to cause a memory corruption. Successful exploitation of these vulnerabilities may allow execution of arbitrary code. 5) An error within the handling of HTTP "Referer:" headers sent with requests to URLs containing "Basic Authentication" credentials having an empty username can be exploited to bypass cross-site request forgery protections. 6) The problem is that Firefox offers a previously configured private SSL certificate when establishing connections to webservers requesting SSL Client Authentication. This can potentially be exploited to disclose sensitive information via a malicious webserver. 7) An error in the handling of the "jar:" protocol can be exploited to establish connections to arbitrary ports on the local machine. 8) An error when displaying XUL pop-up windows can be exploited to hide the window's borders and facilitate phishing attacks. Updated Packages ================ Check if you have firefox installed: # pacman-g2 -Q firefox If found, then you should upgrade to the latest version: # pacman-g2 -Sy firefox Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/406 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkf2LAwACgkQZ7NElSD1VhmkAACfQ/FN/mSQqS9it37OeB0SBFs7 9L4AnR8GEM7mkrxDZgMxvSKFYASdpzTB =lo3X -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 4 15:32:10 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 4 15:32:12 2008 Subject: [Frugalware-security] [ FSA-407 ] seamonkey Message-ID: <20080404133210.70E4F11904C9@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-407 Date: 2008-04-04 Package: seamonkey Vulnerable versions: <= 1.1.8-1 Unaffected versions: >= 1.1.9-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2908 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4879 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1195 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1233 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1234 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1235 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1236 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1237 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1238 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1240 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1241 Description =========== Some vulnerabilities and weaknesses have been reported in Mozilla SeaMonkey, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, conduct cross-site scripting and phishing attacks, and potentially compromise a user's system. For more information, please see FSA406. Updated Packages ================ Check if you have seamonkey installed: # pacman-g2 -Q seamonkey If found, then you should upgrade to the latest version: # pacman-g2 -Sy seamonkey Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/407 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkf2LdoACgkQZ7NElSD1VhlD4QCfSg2VILX+cDuQq/1YuwoPdeBR vikAniS8wZzYZNQui9t9EPSKTibYNjJn =6srl -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 4 15:34:57 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 4 15:34:57 2008 Subject: [Frugalware-security] [ FSA-408 ] wireshark Message-ID: <20080404133457.06A8711904C9@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-408 Date: 2008-04-04 Package: wireshark Vulnerable versions: <= 0.99.8-1 Unaffected versions: >= 1.0.0-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2915 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1561 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1562 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1563 Description =========== Some vulnerabilities have been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerabilities are caused due to errors in the X.509sat, Roofnet, LDAP, and SCCP dissectors. These can be exploited to cause the application to crash when processing specially crafted packets that are either captured off the wire or loaded via a capture file. Updated Packages ================ Check if you have wireshark installed: # pacman-g2 -Q wireshark If found, then you should upgrade to the latest version: # pacman-g2 -Sy wireshark Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/408 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkf2LoEACgkQZ7NElSD1VhkWygCgiGvCKLN+fYdzgg0azi2gz9Cw 9UcAnjIVix4Hir/x9+tCVQJV8zUSNqvW =0ZlA -----END PGP SIGNATURE----- From voroskoi at frugalware.org Thu Apr 10 23:34:35 2008 From: voroskoi at frugalware.org (voroskoi) Date: Thu Apr 10 23:34:37 2008 Subject: [Frugalware-security] [ FSA-409 ] gnupg Message-ID: <20080410213435.84D4011904CE@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-409 Date: 2008-04-10 Package: gnupg Vulnerable versions: <= 1.4.8-1 Unaffected versions: >= 1.4.9-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2905 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1530 Description =========== A vulnerability has been reported in GnuPG, which can potentially be exploited to compromise a vulnerable system. The vulnerability is caused due to an error when importing keys with duplicated IDs. This can be exploited to cause a memory corruption when importing keys via --refresh-keys or --import. Successful exploitation potentially allows execution of arbitrary code, but has not been proven yet. Updated Packages ================ Check if you have gnupg installed: # pacman-g2 -Q gnupg If found, then you should upgrade to the latest version: # pacman-g2 -Sy gnupg Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/409 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkf+h+sACgkQZ7NElSD1VhlupACdGG0iJZq++1ZMq7sECyb0HnpG f0UAn0A1HwsMTYAbPVXzfzyLugZVtoP6 =1c1m -----END PGP SIGNATURE----- From voroskoi at frugalware.org Fri Apr 11 15:02:54 2008 From: voroskoi at frugalware.org (voroskoi) Date: Fri Apr 11 15:02:57 2008 Subject: [Frugalware-security] [ FSA-410 ] gnupg2 Message-ID: <20080411130254.B921D11904CE@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-410 Date: 2008-04-10 Package: gnupg2 Vulnerable versions: <= 2.0.8-1 Unaffected versions: >= 2.0.9-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2905 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1530 Description =========== A vulnerability has been reported in GnuPG, which can potentially be exploited to compromise a vulnerable system. The vulnerability is caused due to an error when importing keys with duplicated IDs. This can be exploited to cause a memory corruption when importing keys via --refresh-keys or --import. Successful exploitation potentially allows execution of arbitrary code, but has not been proven yet. Updated Packages ================ Check if you have gnupg2 installed: # pacman-g2 -Q gnupg2 If found, then you should upgrade to the latest version: # pacman-g2 -Sy gnupg2 Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/410 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkf/YX4ACgkQZ7NElSD1VhkodQCePKV9ZDQS4NPJxTGm2Y4poS7v CaAAmwVLiWiRFtWGUw2+Lmb5fmAEHf6A =OXTy -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sat Apr 12 14:27:51 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sat Apr 12 14:27:53 2008 Subject: [Frugalware-security] [ FSA-411 ] opera Message-ID: <20080412122751.2F2191190009@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-411 Date: 2008-04-12 Package: opera Vulnerable versions: <= 9.26-1 Unaffected versions: >= 9.27-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2930 CVE: There is no CVE for this issue, see: http://www.opera.com/support/search/view/881/ http://www.opera.com/support/search/view/882/ Description =========== Some vulnerabilities have been reported in Opera, which potentially can be exploited by malicious people to compromise a user's system. 1) An error when prompting the user to add a newsfeed can be exploited to cause an invalid memory access via a specially crafted newsfeed source. 2) An error exists in the processing of HTML CANVAS elements. This can be exploited to cause a memory corruption via specially crafted scaled pattern images. Successful exploitation of the vulnerabilities may allow execution of arbitrary code. Updated Packages ================ Check if you have opera installed: # pacman-g2 -Q opera If found, then you should upgrade to the latest version: # pacman-g2 -Sy opera Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/411 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgAqscACgkQZ7NElSD1VhlWlwCcCqA2RCIHJv3DTsmXZZUWZZui lmMAn0v3iOi6LFGClzLB81qRUxvDjBk5 =R8hy -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sat Apr 12 14:33:22 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sat Apr 12 14:33:24 2008 Subject: [Frugalware-security] [ FSA-412 ] cups Message-ID: <20080412123322.ADE051190009@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-412 Date: 2008-04-12 Package: cups Vulnerable versions: <= 1.3.6-1 Unaffected versions: >= 1.3.6-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/2962 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0047 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1373 Description =========== Some vulnerabilities have been reported in CUPS, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system. 1) A boundary error exists within the "cgiCompileSearch()" function in cgi-bin/search.c. This can be exploited to cause a heap-based buffer overflow via a specially crafted IPP request. Successful exploitation may allow execution of arbitrary code, but requires that the vulnerable system is sharing printers on the network. NOTE: If printer sharing is disabled, the vulnerability can only be exploited by malicious, local users. 2) A boundary error exists within the "gif_read_image()" function in filter/image-gif.c. This can be exploited to cause a buffer overflow via overly large "code_size" values in GIF image files. Successful exploitation may allow execution of arbitrary code. Updated Packages ================ Check if you have cups installed: # pacman-g2 -Q cups If found, then you should upgrade to the latest version: # pacman-g2 -Sy cups Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/412 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgArBIACgkQZ7NElSD1VhlVWQCdE4u5kJmYAEG7QE3y4fRQtnL/ NwAAn3C17chw0MbiS9g7Bh6f8w+JvUjn =fX8s -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sat Apr 12 15:08:55 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sat Apr 12 15:08:59 2008 Subject: [Frugalware-security] [ FSA-413 ] python Message-ID: <20080412130855.A2EDC1190542@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-413 Date: 2008-04-12 Package: python Vulnerable versions: <= 2.5.2-1 Unaffected versions: >= 2.5.2-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/2954 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1679 Description =========== David Remahl has discovered a security issue in the imageop module for Python, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. The security issue is caused due to an incomplete fix (see FSA295) and can be exploited to cause a heap-based buffer overflow when specially crafted parameters are passed to the function. Successful exploitation may allow execution of arbitrary code. Updated Packages ================ Check if you have python installed: # pacman-g2 -Q python If found, then you should upgrade to the latest version: # pacman-g2 -Sy python Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/413 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgAtGcACgkQZ7NElSD1Vhm+sQCfe1hOJSvBPowWbiDunyEpushz 83oAnifEF1N5p9pajVeXi89yIS910yBl =urV/ -----END PGP SIGNATURE----- From vmiklos at frugalware.org Mon Apr 14 15:42:53 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Mon Apr 14 15:42:57 2008 Subject: [Frugalware-security] [ FSA-414 ] lighttpd Message-ID: <20080414134253.AD5D71190009@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-414 Date: 2008-04-14 Package: lighttpd Vulnerable versions: <= 1.4.19-1kalgan1 Unaffected versions: >= 1.4.19-1kalgan2 Related bugreport: http://bugs.frugalware.org/task/2922 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1531 Description =========== A vulnerability has been reported in lighttpd, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to lighttpd not properly clearing the OpenSSL error queue. This can be exploited to close concurrent SSL connections of lighttpd by terminating one SSL connection. Updated Packages ================ Check if you have lighttpd installed: # pacman-g2 -Q lighttpd If found, then you should upgrade to the latest version: # pacman-g2 -Sy lighttpd Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/414 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgDX10ACgkQZ7NElSD1VhldJgCfc4CDIT9TW2Bu1tLIaOQDjV9U begAnRS6m3Uscfj184tmIrRzOBMKM84r =6fTp -----END PGP SIGNATURE----- From vmiklos at frugalware.org Mon Apr 14 15:45:54 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Mon Apr 14 15:45:57 2008 Subject: [Frugalware-security] [ FSA-415 ] m4 Message-ID: <20080414134554.DD94A1190009@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-415 Date: 2008-04-14 Package: m4 Vulnerable versions: <= 1.4.10-1 Unaffected versions: >= 1.4.10-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/2963 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1687 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1688 Description =========== A vulnerability and a security issue have been reported in GNU M4, which can be exploited by malicious people to manipulate certain data or to potentially compromise a user's system. 1) A format string error exists within the "produce_frozen_state()" function in src/freeze.c. This can be exploited via a specially crafted filename passed as a parameter to "m4 -F". Successful exploitation may allow execution of arbitrary code, but requires that the user is tricked into processing a filename containing malicious format specifiers. 2) An error within the implementation of the "maketemp" and "mkstemp" macros can potentially be exploited to trigger the processing of improper files via special characters contained in the output string. Updated Packages ================ Check if you have m4 installed: # pacman-g2 -Q m4 If found, then you should upgrade to the latest version: # pacman-g2 -Sy m4 Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/415 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgDYBIACgkQZ7NElSD1VhmOGACglW73lSjv01jZVF0Ct6Pf3i8B CHoAn2B7AwQG1l1gaphu2x1OtI3QGKFa =mwfg -----END PGP SIGNATURE----- From vmiklos at frugalware.org Mon Apr 14 15:47:50 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Mon Apr 14 15:47:52 2008 Subject: [Frugalware-security] [ FSA-416 ] pdns-recursor Message-ID: <20080414134750.1865B1190009@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-416 Date: 2008-04-14 Package: pdns-recursor Vulnerable versions: <= 3.1.4-3 Unaffected versions: >= 3.1.5-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2924 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1637 Description =========== Amit Klein has reported a vulnerability in PowerDNS Recursor, which can be exploited by malicious people to poison the DNS cache. The vulnerability is caused due to the application using predictable standard C library functions to generate random numbers (e.g. "rand()" and "srand()"), which are then used to create the transaction ID (TRXID) and UDP source port. This can be exploited to poison the DNS cache by guessing the transaction TRXID and the UDP source port. Updated Packages ================ Check if you have pdns-recursor installed: # pacman-g2 -Q pdns-recursor If found, then you should upgrade to the latest version: # pacman-g2 -Sy pdns-recursor Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/416 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgDYIYACgkQZ7NElSD1Vhl/eACfcPeBpiQdIjzciwODiY6l7RW5 FokAoIUmOqPcqWiK5A4FyX7qu+2ErTwO =xM9G -----END PGP SIGNATURE----- From vmiklos at frugalware.org Mon Apr 14 15:49:55 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Mon Apr 14 15:49:57 2008 Subject: [Frugalware-security] [ FSA-417 ] xine-lib Message-ID: <20080414134955.7BE391190009@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-417 Date: 2008-04-14 Package: xine-lib Vulnerable versions: <= 1.1.11-1kalgan1 Unaffected versions: >= 1.1.11-1kalgan2 Related bugreport: http://bugs.frugalware.org/task/2892 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1482 Description =========== Luigi Auriemma has reported some vulnerabilities in xine-lib, which potentially can be exploited by malicious people to compromise a user's system. The vulnerabilities are caused due to integer overflow errors when allocating memory in src/demuxers/demux_flv.c, src/demuxers/demux_qt.c, src/demuxers/demux_real.c, src/demuxers/demux_wc3movie.c, src/demuxers/ebml.c, and src/demuxers/demux_film.c. These can be exploited to cause heap-based buffer overflows via overly large fields included in e.g. FLV, MOV, RM, MVE, MKV, and CAK files. Updated Packages ================ Check if you have xine-lib installed: # pacman-g2 -Q xine-lib If found, then you should upgrade to the latest version: # pacman-g2 -Sy xine-lib Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/417 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgDYQMACgkQZ7NElSD1VhlBMwCgnOxPPEtXoTQp5arUECZXvoUg ZNwAoJsMA9CnKduWHtsyq0G2eQ2JjwGW =4uiz -----END PGP SIGNATURE----- From vmiklos at frugalware.org Mon Apr 14 16:15:22 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Mon Apr 14 16:15:24 2008 Subject: [Frugalware-security] [ FSA-418 ] mtr Message-ID: <20080414141522.A3DE211901AF@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-418 Date: 2008-04-14 Package: mtr Vulnerable versions: <= 0.72-1 Unaffected versions: >= 0.73-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2956 CVE: There is no CVE for this issue. Description =========== David Leadbeater has reported a vulnerability in mtr, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to mtr not properly limiting the length of some buffers. Updated Packages ================ Check if you have mtr installed: # pacman-g2 -Q mtr If found, then you should upgrade to the latest version: # pacman-g2 -Sy mtr Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/418 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgDZvoACgkQZ7NElSD1Vhn5JACfUVCFE8BtqWmVFuy5mLYeibS5 FPQAnAxttZDW7mXUnEe8Iu7/7eycP34G =pGYX -----END PGP SIGNATURE----- From vmiklos at frugalware.org Mon Apr 14 16:18:47 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Mon Apr 14 16:18:49 2008 Subject: [Frugalware-security] [ FSA-419 ] gnome-screensaver Message-ID: <20080414141847.159371190009@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-419 Date: 2008-04-14 Package: gnome-screensaver Vulnerable versions: <= 2.20.0-1 Unaffected versions: >= 2.20.0-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/2931 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6389 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0887 Description =========== A weakness and a security issue have been reported in gnome-screensaver, which can be exploited by malicious people with physical access to disclose potentially sensitive information or bypass certain security restrictions. 1) A weakness is caused due to the "Leave message" feature allowing attackers to e.g. paste the contents of the clipboard of the user who's screen is currently locked, which can be exploited to disclose potentially sensitive information. 2) A security issue is caused due to an error if the NIS authentication method is used. This can be exploited to bypass the authentication check and unlock the screen if the NIS server is not reachable. Updated Packages ================ Check if you have gnome-screensaver installed: # pacman-g2 -Q gnome-screensaver If found, then you should upgrade to the latest version: # pacman-g2 -Sy gnome-screensaver Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/419 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgDZ8cACgkQZ7NElSD1Vhk1YwCghPqRBn8NMQ9Y1qr0MP5HQwwM AjQAoI9rrK+3ZvkK+REollZkY92d3H9Z =6cCT -----END PGP SIGNATURE----- From vmiklos at frugalware.org Mon Apr 14 16:23:31 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Mon Apr 14 16:23:33 2008 Subject: [Frugalware-security] [ FSA-420 ] flashplugin Message-ID: <20080414142331.783E41190009@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-420 Date: 2008-04-14 Package: flashplugin Vulnerable versions: <= 9.0.115.0-1 Unaffected versions: >= 9.0.124.0-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2959 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0071 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5275 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6019 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6243 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6637 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1654 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1655 Description =========== Some vulnerabilities have been reported in Adobe Flash Player, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, or to potentially compromise a user's system. 1) A boundary error exists in the processing of "Declare Function (V7)" tags. This can be exploited to cause a heap-based buffer overflow via specially crafted flags. 2) An integer overflow in the processing of multimedia files can be exploited to cause a buffer overflow. Successful exploitation of the vulnerabilities may allow execution of arbitrary code. 3) Errors when pinning a hostname to an IP address can be exploited to conduct DNS rebinding attacks. 4) An error when sending HTTP headers can be exploited to bypass cross-domain policy files. 5) An error exists in the enforcing of cross-domain policy files. This can be exploited to bypass certain security restrictions on web servers hosting cross-domain policy files. 6) Input passed to unspecified parameters when handling e.g. the "asfunction:" protocol is not properly sanitised before being returned to the user. This can be exploited to inject arbitrary HTML and script code in a user's browser session in context of an affected site. Updated Packages ================ Check if you have flashplugin installed: # pacman-g2 -Q flashplugin If found, then you should upgrade to the latest version: # pacman-g2 -Sy flashplugin Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/420 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgDaOMACgkQZ7NElSD1VhlargCggwlpsLL78LwcoNxvGkXtE8sr FvIAn3wniQNB5dyRSmwrPcZJCXogY++J =whPW -----END PGP SIGNATURE----- From vmiklos at frugalware.org Mon Apr 14 16:26:30 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Mon Apr 14 16:26:32 2008 Subject: [Frugalware-security] [ FSA-421 ] sdlimage Message-ID: <20080414142630.64CCA1190009@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-421 Date: 2008-04-14 Package: sdlimage Vulnerable versions: <= 1.2.6-1 Unaffected versions: >= 1.2.6-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/2916 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6697 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0544 Description =========== Two vulnerabilities have been reported in SDL_image, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. 1) A boundary error within the "LWZReadByte()" function in IMG_gif.c can be exploited to trigger the overflow of a static buffer via a specially crafted GIF file. 2) A boundary error within the "IMG_LoadLBM_RW()" function in IMG_lbm.c can be exploited to cause a heap-based buffer overflow via a specially crafted IFF ILBM file. Updated Packages ================ Check if you have sdlimage installed: # pacman-g2 -Q sdlimage If found, then you should upgrade to the latest version: # pacman-g2 -Sy sdlimage Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/421 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgDaZYACgkQZ7NElSD1Vhlp3QCfTGDwy7YJm09qGef5vPIrP8rd 4KEAn1OgBiRgF4Y6NJm/QLKtEoL0CKlN =N++Y -----END PGP SIGNATURE----- From vmiklos at frugalware.org Mon Apr 14 16:33:07 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Mon Apr 14 16:33:10 2008 Subject: [Frugalware-security] [ FSA-422 ] vlc Message-ID: <20080414143307.71E471190009@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-422 Date: 2008-04-14 Package: vlc Vulnerable versions: <= 0.8.6-11 Unaffected versions: >= 0.8.6-12kalgan1 Related bugreport: http://bugs.frugalware.org/task/2904 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0073 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1489 Description =========== Some vulnerabilities have been reported in VLC Media Player, which potentially can be exploited by malicious people to compromise a user's system. 1) An integer overflow error within the "MP4_ReadBox_rdrf()" function in modules/demux/mp4/libmp4.c can be exploited to cause a heap-based buffer overflow via e.g. a MP4 file with a specially crafted RDRF atom. 2) A boundary error within the "sdpplin_parse()" function in modules/access/rtsp/real_sdpplin.c can be exploited to overwrite arbitrary memory regions. 3) Two integer overflow errors within the "cinepak_decode_frame()" function in modules/codec/cinepak.c can be exploited to cause a heap-based buffer overflow. Successful exploitation of the vulnerabilities may allow execution of arbitrary code. Updated Packages ================ Check if you have vlc installed: # pacman-g2 -Q vlc If found, then you should upgrade to the latest version: # pacman-g2 -Sy vlc Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/422 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgDayMACgkQZ7NElSD1VhlDbwCeJOt/fEE3PPaS6KjEoGldlscv XTwAn1Xm8O/Xn4B746vHzNDJ5S+s1iWV =gSjI -----END PGP SIGNATURE----- From vmiklos at frugalware.org Mon Apr 14 16:39:12 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Mon Apr 14 16:39:14 2008 Subject: [Frugalware-security] [ FSA-423 ] emacs Message-ID: <20080414143912.12EE511901AF@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-423 Date: 2008-04-14 Package: emacs Vulnerable versions: <= 22.1-2 Unaffected versions: >= 22.1-3kalgan1 Related bugreport: http://bugs.frugalware.org/task/3006 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1694 Description =========== Steve Grubb discovered that vcdiff script as shipped with Emacs uses temporary files insecurely, which makes it possible for local attacker to conduct a symlink attack and make the victim overwrite arbitrary file. Updated Packages ================ Check if you have emacs installed: # pacman-g2 -Q emacs If found, then you should upgrade to the latest version: # pacman-g2 -Sy emacs Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/423 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgDbJAACgkQZ7NElSD1VhkcSQCgmDnFN9N/AEqMWJ7FWeFlnn0a uZ0An2v1Kyjbjtu9ewlCazppRPhy81En =TP7P -----END PGP SIGNATURE----- From vmiklos at frugalware.org Mon Apr 14 17:38:04 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Mon Apr 14 17:38:06 2008 Subject: [Frugalware-security] [ FSA-424 ] comix Message-ID: <20080414153804.509A91190009@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-424 Date: 2008-04-14 Package: comix Vulnerable versions: <= 3.6.4-1 Unaffected versions: >= 3.6.4-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/2923 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1568 Description =========== A vulnerability has been reported in Comix, which can be exploited by malicious people to compromise a user's sytem. The vulnerability is caused due to the improper verification of received filenames when executing the rar, unrar, or jpegtran programs. This can be exploited to execute arbitrary commands via a file containing shell metacharacters within the filename. Updated Packages ================ Check if you have comix installed: # pacman-g2 -Q comix If found, then you should upgrade to the latest version: # pacman-g2 -Sy comix Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/424 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgDelwACgkQZ7NElSD1VhmobACdFKO4GkX70+XXbTanxcXNKXnN R+IAoINoSrON3YFwVDWJyq+PasTV52b7 =bOOW -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 25 16:37:27 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 25 16:37:31 2008 Subject: [Frugalware-security] [ FSA-425 ] mailman Message-ID: <20080425143727.255FC11904D3@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-425 Date: 2008-04-25 Package: mailman Vulnerable versions: <= 2.1.9-2 Unaffected versions: >= 2.1.9-3kalgan1 Related bugreport: http://bugs.frugalware.org/task/3020 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0564 Description =========== A vulnerability has been reported in Mailman, which can be exploited by malicious users to conduct script insertion attacks. Certain input when editing the list templates and the list info attribute is not properly sanitised before being stored. This can be exploited to insert arbitrary HTML and script code, which is executed in a user's browser session in context of an affected site when the malicious website is accessed. Successful exploitation requires list administrator privileges. Updated Packages ================ Check if you have mailman installed: # pacman-g2 -Q mailman If found, then you should upgrade to the latest version: # pacman-g2 -Sy mailman Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/425 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgR7KcACgkQZ7NElSD1VhngSwCghUzXcV1+jefBwlouEw5LTWj3 3WoAn3mlaVBveTv8Qo8llKrkUwtMmhfv =QVpY -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 25 16:47:24 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 25 16:47:28 2008 Subject: [Frugalware-security] [ FSA-426 ] speex Message-ID: <20080425144724.ACA1D11904D3@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-426 Date: 2008-04-25 Package: speex Vulnerable versions: <= 1.2beta3-1 Unaffected versions: >= 1.2beta3-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3023 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1686 Description =========== The reference speex decoder from the Speex library is performing insufficient boundary checks on a header structure read from user input. A user controlled field in the header structure is used to build a function pointer. The reference speex decoder does not check for negative values for the field, allowing the function pointer to be pointed at an arbitary position in memory. This allows remote code execution. Updated Packages ================ Check if you have speex installed: # pacman-g2 -Q speex If found, then you should upgrade to the latest version: # pacman-g2 -Sy speex Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/426 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgR7vwACgkQZ7NElSD1VhnkUQCfcmxYGMy6c2Au6rD8hHMoWpRN NzAAoI7h24mgZAjYnyHewuWWFqj1z9+o =SbS2 -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 25 16:53:11 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 25 16:53:14 2008 Subject: [Frugalware-security] [ FSA-427 ] gst-plugins-good Message-ID: <20080425145311.7C4C511904D3@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-427 Date: 2008-04-25 Package: gst-plugins-good Vulnerable versions: <= 0.10.7-1 Unaffected versions: >= 0.10.7-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3031 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1686 Description =========== A vulnerability has been reported in gst-plugins-good, which can potentially be exploited by malicious people to compromise a vulnerable system. For more information, see FSA426. Updated Packages ================ Check if you have gst-plugins-good installed: # pacman-g2 -Q gst-plugins-good If found, then you should upgrade to the latest version: # pacman-g2 -Sy gst-plugins-good Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/427 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgR8FcACgkQZ7NElSD1Vhn8uACeOMMQLP4VAOHXhvToVQoXlOdq bG4AniNAupSO7H9rEIBPm66FVO25YbGj =rC4U -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 25 16:55:24 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 25 16:55:26 2008 Subject: [Frugalware-security] [ FSA-428 ] sdl_sound Message-ID: <20080425145524.673EE11904D3@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-428 Date: 2008-04-25 Package: sdl_sound Vulnerable versions: <= 1.0.1-4 Unaffected versions: >= 1.0.1-5kalgan1 Related bugreport: http://bugs.frugalware.org/task/3026 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1686 Description =========== A vulnerability has been reported in sdl_sound, which can potentially be exploited by malicious people to compromise a vulnerable system. For more information, see FSA426. Updated Packages ================ Check if you have sdl_sound installed: # pacman-g2 -Q sdl_sound If found, then you should upgrade to the latest version: # pacman-g2 -Sy sdl_sound Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/428 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgR8NwACgkQZ7NElSD1VhnolACfTPvn0Iw+85UUfO45au4LhSK0 0skAni7afxs8hY4CjadpEUopzxy+9Xxs =U8ga -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 25 17:01:13 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 25 17:01:16 2008 Subject: [Frugalware-security] [ FSA-429 ] vlc Message-ID: <20080425150113.1FB7911904D3@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-429 Date: 2008-04-25 Package: vlc Vulnerable versions: <= 0.8.6-12kalgan1 Unaffected versions: >= 0.8.6-12kalgan2 Related bugreport: http://bugs.frugalware.org/task/3024 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1686 Description =========== A vulnerability has been reported in vlc, which can potentially be exploited by malicious people to compromise a vulnerable system. For more information, see FSA426. Updated Packages ================ Check if you have vlc installed: # pacman-g2 -Q vlc If found, then you should upgrade to the latest version: # pacman-g2 -Sy vlc Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/429 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgR8jkACgkQZ7NElSD1VhmC0ACeOoC+lOu+torZif0mDPcPgY3r Kd8An2yOo1W5Qjs2IjBjjq6LGxwRoW2j =2JkA -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 25 17:03:04 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 25 17:03:07 2008 Subject: [Frugalware-security] [ FSA-430 ] sweep Message-ID: <20080425150304.9E6DE11904D3@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-430 Date: 2008-04-25 Package: sweep Vulnerable versions: <= 0.9.2-2 Unaffected versions: >= 0.9.2-3kalgan1 Related bugreport: http://bugs.frugalware.org/task/3025 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1686 Description =========== A vulnerability has been reported in sweep, which can potentially be exploited by malicious people to compromise a vulnerable system. For more information, see FSA426. Updated Packages ================ Check if you have sweep installed: # pacman-g2 -Q sweep If found, then you should upgrade to the latest version: # pacman-g2 -Sy sweep Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/430 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgR8qgACgkQZ7NElSD1Vhn4jQCeMbVsEV+EPu90sdbJ1zZrRpNI FjQAn3LRQPNYm4iMQ2qNsmZIcK20Rh78 =TUuz -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 25 17:15:34 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 25 17:15:36 2008 Subject: [Frugalware-security] [ FSA-431 ] firefox Message-ID: <20080425151534.3785111904D3@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-431 Date: 2008-04-25 Package: firefox Vulnerable versions: <= 2.0.0.13-1kalgan1 Unaffected versions: >= 2.0.0.14-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3022 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1380 Description =========== A vulnerability has been reported in Mozilla Firefox, which can potentially be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error in the Javascript Garbage Collector and can be exploited to cause a memory corruption via specially crafted Javascript code. Successful exploitation may allow execution of arbitrary code. Updated Packages ================ Check if you have firefox installed: # pacman-g2 -Q firefox If found, then you should upgrade to the latest version: # pacman-g2 -Sy firefox Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/431 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgR9ZYACgkQZ7NElSD1VhlQUgCfessWN4DrbgeNCx9qU7lPlUHy XygAniM+O1ANOIrLm1xA95YRCoPibzXa =5H95 -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 25 17:29:11 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 25 17:29:15 2008 Subject: [Frugalware-security] [ FSA-432 ] clamav Message-ID: <20080425152911.C10AC11904D3@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-432 Date: 2008-04-25 Package: clamav Vulnerable versions: <= 0.92.1-1 Unaffected versions: >= 0.93-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3014 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1100 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0314 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1387 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1833 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1835 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1836 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1837 Description =========== Some vulnerabilities have been reported in ClamAV, which can be exploited by malicious people to bypass certain security restrictions, to cause a DoS (Denial of Service), or to compromise a vulnerable system. 1) A boundary error exists within the "cli_scanpe()" function in libclamav/pe.c. This can be exploited to cause a heap-based buffer overflow via a specially crafted "Upack" executable. Successful exploitation allows execution of arbitrary code. 2) A boundary error within the processing of PeSpin packed executables in libclamav/spin.c can be exploited to cause a heap-based buffer overflow. Successful exploitation may allow execution of arbitrary code. 3) An unspecified error in the processing of ARJ files can be exploited to hang ClamAV. 4) A boundary error within the processing of WWPack packed PE files in libclamav/pe.c can be exploited to cause a heap corruption. Successful exploitation may allow execution of arbitrary code. 5) An error in the processing of RAR files can be exploited to bypass the scanning mechanism via a RAR file containing an invalid version number. 6) An error exists within the "rfc2231()" function in message.c. This can be exploited to trigger the return of strings that are not NULL terminated and cause a crash. 7) An error in libclamunrar can be exploited to crash the application via specially crafted RAR files. Updated Packages ================ Check if you have clamav installed: # pacman-g2 -Q clamav If found, then you should upgrade to the latest version: # pacman-g2 -Sy clamav Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/432 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgR+McACgkQZ7NElSD1VhmzhgCgglxnWnbv8oMnFEa0OVuAjR0t a4wAnjI/i/+TJ4hhKd12jiOmVTUBpqgJ =svKz -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 25 17:45:38 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 25 17:45:41 2008 Subject: [Frugalware-security] [ FSA-433 ] cups Message-ID: <20080425154538.8C5EF11904D3@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-433 Date: 2008-04-25 Package: cups Vulnerable versions: <= 1.3.6-2kalgan1 Unaffected versions: >= 1.3.6-2kalgan2 Related bugreport: http://bugs.frugalware.org/task/3012 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1722 Description =========== Thomas Pollet has reported a vulnerability in CUPS, which potentially can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to two integer overflow errors in filter/image-png.c when processing PNG files. These can be exploited to cause a heap-based buffer overflow via overly large width and height PNG fields. Successful exploitation may allow execution of arbitrary code. Updated Packages ================ Check if you have cups installed: # pacman-g2 -Q cups If found, then you should upgrade to the latest version: # pacman-g2 -Sy cups Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/433 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgR/KIACgkQZ7NElSD1VhlgewCfeXZAqaoZTWziAY5Vi4BvtOZp 37cAniZR+yiBtln0Tjh7Cs4WDsgM7dk8 =Zswm -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 25 17:53:53 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 25 17:53:56 2008 Subject: [Frugalware-security] [ FSA-434 ] libpng Message-ID: <20080425155353.8C51111904D3@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-434 Date: 2008-04-25 Package: libpng Vulnerable versions: <= 1.2.24-1 Unaffected versions: >= 1.2.24-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3013 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1382 Description =========== Tavis Ormandy has reported a vulnerability in libpng, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose potentially sensitive information, or potentially compromise an application using the library. The vulnerability is caused due to the improper handling of PNG chunks unknown to the library. This can be exploited to trigger the use of uninitialized memory in e.g. a "free()" call via unknown PNG chunks having a length of zero. Successful exploitation may allow execution of arbitrary code, but requires that the application calls the "png_set_read_user_chunk_fn()" function or the "png_set_keep_unknown_chunks()" function under specific conditions. Updated Packages ================ Check if you have libpng installed: # pacman-g2 -Q libpng If found, then you should upgrade to the latest version: # pacman-g2 -Sy libpng Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/434 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgR/pEACgkQZ7NElSD1VhldIwCfVwK36H9JZYrzDhrgc9wPTV6b 3NYAnRwMdADDE0afgvm5m3rj79cixPIZ =O0af -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 25 17:57:16 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 25 17:57:20 2008 Subject: [Frugalware-security] [ FSA-435 ] openssh Message-ID: <20080425155716.6CBF911904D3@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-435 Date: 2008-04-25 Package: openssh Vulnerable versions: <= 4.7p1-4kalgan1 Unaffected versions: >= 4.7p1-4kalgan2 Related bugreport: http://bugs.frugalware.org/task/2961 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1657 Description =========== A weakness has been reported in OpenSSH, which can be exploited by malicious, local users to bypass certain security restrictions. The weakness is caused due to the improper implementation of the "ForceCommand" directive. This can be exploited to execute arbitrary commands via the ~/.ssh/rc file even if a "ForceCommand" directive is in effect. Updated Packages ================ Check if you have openssh installed: # pacman-g2 -Q openssh If found, then you should upgrade to the latest version: # pacman-g2 -Sy openssh Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/435 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgR/1wACgkQZ7NElSD1Vhl5KwCdGQ9H2pEPFoshisAysadkHVpi 060An2lE3MGbQ7Jnh69eWLTtVNjb68MD =I3w+ -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Apr 25 18:01:10 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Apr 25 18:01:13 2008 Subject: [Frugalware-security] [ FSA-436 ] phpmyadmin Message-ID: <20080425160110.707F811904D3@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-436 Date: 2008-04-25 Package: phpmyadmin Vulnerable versions: <= 2.11.5.1-1kalgan1 Unaffected versions: >= 2.11.5.2-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3035 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1924 Description =========== A vulnerability has been reported in phpMyAdmin, which can be exploited by malicious users to disclose sensitive information. The vulnerability is caused due to an unspecified error and can be exploited to disclose arbitrary files via a specially crafted HTTP POST request. Successful exploitation requires a certain level of access e.g. on a shared host. Updated Packages ================ Check if you have phpmyadmin installed: # pacman-g2 -Q phpmyadmin If found, then you should upgrade to the latest version: # pacman-g2 -Sy phpmyadmin Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/436 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkgSAEYACgkQZ7NElSD1VhklWQCgnzzWw59OWUFRmMdKAfIZfO3q mDQAniW2iFvYYa/8BW+v7jvNyTjNvOKi =icp3 -----END PGP SIGNATURE-----