From vmiklos at frugalware.org Wed Jul 2 20:59:03 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Wed Jul 2 20:59:05 2008 Subject: [Frugalware-security] [ FSA-483 ] apache Message-ID: <20080702185903.969C41190498@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-483 Date: 2008-07-02 Package: apache Vulnerable versions: <= 2.2.8-1 Unaffected versions: >= 2.2.8-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3177 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2364 Description =========== A vulnerability has been reported in the Apache mod_proxy module, which potentially can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error in the "ap_proxy_http_process_response()" function when forwarding interim responses. This can be exploited to consume large amounts of memory by tricking mod_proxy into sending an overly large number of interim responses to the client. Updated Packages ================ Check if you have apache installed: # pacman-g2 -Q apache If found, then you should upgrade to the latest version: # pacman-g2 -Sy apache Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/483 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhrz/cACgkQZ7NElSD1VhkhQACdFWBu5THueZDXpb1G/wJF4wjy yXMAoIhra8M8K//yhCoh4RdQ+oFq3IJ4 =VLGy -----END PGP SIGNATURE----- From vmiklos at frugalware.org Wed Jul 2 21:02:01 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Wed Jul 2 21:02:02 2008 Subject: [Frugalware-security] [ FSA-484 ] xorg-server Message-ID: <20080702190201.02FF1119039F@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-484 Date: 2008-07-02 Package: xorg-server Vulnerable versions: <= 1.4.0.90-5 Unaffected versions: >= 1.4.0.90-6kalgan2 Related bugreport: http://bugs.frugalware.org/task/3175 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1377 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1379 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2360 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2361 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2362 Description =========== Some vulnerabilities have been reported in X.org X11, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges. 1) An integer overflow error when calculating the size of the glyph exists in the "AllocateGlyph()" function within the Render extension. This can be exploited to cause a heap-based buffer overflow via a specially crafted request. 2) An integer overflow error when calculating the size of the glyph in the "ProcRenderCreateCursor()" function within the Render extension can be exploited to crash the X server via a specially crafted request. 3) An integer overflow error exists in the Render extension when parsing client requests for the "SProcRenderCreateLinearGradient", "SProcRenderCreateRadialGradient", or "SProcRenderCreateConicalGradient" functions and can be exploited to corrupt heap memory. 4) Multiple input validation errors in the "SProcSecurityGenerateAuthorization()", "SProcRecordCreateContext()", and "SProcRecordRegisterClients()" functions within the Record and Security extensions can be exploited to corrupt heap memory via specially crafted requests. Successful exploitation of vulnerabilities #1, #3, and #4 may allow execution of arbitrary code with privileges of the X server (typically root). 5) An integer overflow error when processing parameters to the "ShmPutImage()" request can be exploited to disclose arbitrary memory of the X server process. Updated Packages ================ Check if you have xorg-server installed: # pacman-g2 -Q xorg-server If found, then you should upgrade to the latest version: # pacman-g2 -Sy xorg-server Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/484 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhr0KgACgkQZ7NElSD1Vhlc5QCcCeAIvev205Ip/fgJTjLgvQw+ wLcAn06kqve8+Pk8G4vF9xE6BwTI7Th0 =2Yvz -----END PGP SIGNATURE----- From vmiklos at frugalware.org Wed Jul 2 21:06:23 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Wed Jul 2 21:06:25 2008 Subject: [Frugalware-security] [ FSA-485 ] courier-authlib Message-ID: <20080702190623.37C23119039F@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-485 Date: 2008-07-02 Package: courier-authlib Vulnerable versions: <= 0.60.2-1 Unaffected versions: >= 0.60.6-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3180 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2667 Description =========== A vulnerability has been reported in the Courier Authentication Library, which can be exploited by malicious people to conduct SQL injection attacks. Input passed via e.g. the username to the library is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code and e.g. potentially bypass authentication. Successful exploitation requires that a MySQL database is used for authentication and that a Non-Latin character set is selected. Updated Packages ================ Check if you have courier-authlib installed: # pacman-g2 -Q courier-authlib If found, then you should upgrade to the latest version: # pacman-g2 -Sy courier-authlib Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/485 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhr0a8ACgkQZ7NElSD1VhnT5ACaA+KPmtdcAQzq8+fsRIAMsbgP XeEAn3Cx4aY/TK7TetGy+zOY+CACAuRJ =Me9a -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jul 11 12:22:37 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jul 11 12:22:40 2008 Subject: [Frugalware-security] [ FSA-486 ] opera Message-ID: <20080711102237.581EF177001C@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-486 Date: 2008-07-11 Package: opera Vulnerable versions: <= 9.27-1kalgan1 Unaffected versions: >= 9.50-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3176 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2714 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2715 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2716 Description =========== Some vulnerabilities have been reported in Opera, which can be exploited by malicious people to disclose potentially sensitive information or to conduct spoofing attacks. 1) An error in the handling of certain characters in a page address can be exploited to e.g. make a site's address look like another site's address. 2) An error in the checking of the source of images when used by HTML CANVAS elements can be exploited to retrieve the image data. 3) Pages in frames are able to change the location of pages in other frames on the parent page. Updated Packages ================ Check if you have opera installed: # pacman-g2 -Q opera If found, then you should upgrade to the latest version: # pacman-g2 -Sy opera Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/486 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkh3NG0ACgkQZ7NElSD1VhnqBgCeNeFXlhjtWi4U3G9CQgJkzlqT ANwAn0+tiDPcmoxoxjAcZc2ehlIpjgiC =er1G -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jul 11 12:27:53 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jul 11 12:27:56 2008 Subject: [Frugalware-security] [ FSA-487 ] phpmyadmin Message-ID: <20080711102753.BDDDE177001C@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-487 Date: 2008-07-11 Package: phpmyadmin Vulnerable versions: <= 2.11.5.2-1kalgan1 Unaffected versions: >= 2.11.7-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3205 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2960 Description =========== Some vulnerabilities have been reported in phpMyAdmin, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via unspecified parameters to files in /libraries is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. Successful exploitation requires that "register_globals" is enabled and support for ".htaccess" files is disabled. Updated Packages ================ Check if you have phpmyadmin installed: # pacman-g2 -Q phpmyadmin If found, then you should upgrade to the latest version: # pacman-g2 -Sy phpmyadmin Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/487 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkh3NakACgkQZ7NElSD1VhmRZQCeM1uNArACWuBkEcOqu1bWD2L9 atAAnRZxbDuBlmA+ACfU1fn53dP/9Agp =vBoL -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jul 11 12:33:56 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jul 11 12:33:58 2008 Subject: [Frugalware-security] [ FSA-488 ] wireshark Message-ID: <20080711103356.3EF3A177001C@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-488 Date: 2008-07-11 Package: wireshark Vulnerable versions: <= 1.0.0-1kalgan1 Unaffected versions: >= 1.0.1-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3203 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3137 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3138 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3139 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3140 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3141 Description =========== Some vulnerabilities have been reported in Wireshark, which can be exploited by malicious people to disclose potentially sensitive information or cause a DoS (Denial of Service). 1) An error in the GSM SMS dissector can be exploited to crash the application. 2) An error in the PANA and KISMET dissectors can be exploited to trigger an application exit. 3) An use-after-free error in the RTMPT dissector can be exploited to crash the application. 4) An unspecified error in the RMI dissector can be exploited to disclose system memory. 5) An error in the syslog dissector can be exploited to crash the application via an incomplete SS7 MSU syslog encapsulated packet. Updated Packages ================ Check if you have wireshark installed: # pacman-g2 -Q wireshark If found, then you should upgrade to the latest version: # pacman-g2 -Sy wireshark Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/488 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkh3NxQACgkQZ7NElSD1VhlW0QCfXraK+l2K9KKHwGIGlSBxYad7 sqYAn2DsX36qusTLw3idsy+CTYF6veaz =DAro -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jul 11 12:36:34 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jul 11 12:36:36 2008 Subject: [Frugalware-security] [ FSA-489 ] kernel Message-ID: <20080711103634.31E1E177001C@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-489 Date: 2008-07-11 Package: kernel Vulnerable versions: <= 2.6.24-4kalgan3 Unaffected versions: >= 2.6.24-4kalgan4 Related bugreport: http://bugs.frugalware.org/task/3173 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2750 Description =========== A vulnerability has been reported in the Linux Kernel, which potentially can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to a boundary error in the "pppol2tp_recvmsg()" function and can potentially be exploited to corrupt kernel memory via a specially crafted PPP over L2TP packet. Updated Packages ================ Check if you have kernel installed: # pacman-g2 -Q kernel If found, then you should upgrade to the latest version: # pacman-g2 -Sy kernel Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/489 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkh3N7IACgkQZ7NElSD1VhlBBACdEznLocJlqrX8gT6Yp3jx0+S7 90AAniIEqePjOFs45Z9aTR4yC6+TWpGN =T+cg -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sat Jul 26 19:43:42 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sat Jul 26 19:43:46 2008 Subject: [Frugalware-security] [ FSA-490 ] clamav Message-ID: <20080726174342.B7D511190A09@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-490 Date: 2008-07-26 Package: clamav Vulnerable versions: <= 0.93.1-1kalgan1 Unaffected versions: >= 0.93.3-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3250 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2713 Description =========== A vulnerability has been reported in ClamAV, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to a boundary error in libclamav/petite.c. This can be exploited to trigger an out-of-bounds read via a specially crafted Petite packed executable. Updated Packages ================ Check if you have clamav installed: # pacman-g2 -Q clamav If found, then you should upgrade to the latest version: # pacman-g2 -Sy clamav Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/490 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiLYk4ACgkQZ7NElSD1VhlZWACgiElDEaFtMfUf96d5RFbqAbAI AwYAoJWxLNYGPELuj9Kfvr8845G7O+yr =Lule -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sat Jul 26 19:46:08 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sat Jul 26 19:46:10 2008 Subject: [Frugalware-security] [ FSA-491 ] phpmyadmin Message-ID: <20080726174608.C8FFF1190A09@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-491 Date: 2008-07-26 Package: phpmyadmin Vulnerable versions: <= 2.11.7-1kalgan1 Unaffected versions: >= 2.11.7.1-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3247 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3197 Description =========== Aung Khant has discovered some vulnerabilities in phpMyAdmin, which can be exploited by malicious people to conduct cross-site request forgery attacks. The application allows users to perform certain actions via HTTP requests without performing any validity checks to verify the request. This can be exploited to create databases and change the connection character set for an authenticated user, who is tricked into visiting a malicious website. Updated Packages ================ Check if you have phpmyadmin installed: # pacman-g2 -Q phpmyadmin If found, then you should upgrade to the latest version: # pacman-g2 -Sy phpmyadmin Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/491 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiLYuAACgkQZ7NElSD1VhlmMwCfXKfT971NKH6Y+lOoyqHJhW3a 2bgAnjbrajYtwBUgHdcPvftOQt2TkaQi =yrkW -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sat Jul 26 20:03:06 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sat Jul 26 20:03:09 2008 Subject: [Frugalware-security] [ FSA-492 ] drupal Message-ID: <20080726180306.A8CBB1190A09@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-492 Date: 2008-07-26 Package: drupal Vulnerable versions: <= 5.7-1 Unaffected versions: >= 5.9-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3222 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3219 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3220 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3221 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3222 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3223 Description =========== Some vulnerabilities have been reported in Drupal, which can be exploited by malicious people to conduct SQL injection and script insertion attacks. 1) The application allows users to perform certain actions via HTTP requests without performing any validity checks to verify the request. This can be exploited to e.g. delete OpenID identities or translation strings by enticing a logged-in user to visit a malicious site. 2) Certain input passed to numeric fields in the Schema API is not properly sanitised before being used in an SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Updated Packages ================ Check if you have drupal installed: # pacman-g2 -Q drupal If found, then you should upgrade to the latest version: # pacman-g2 -Sy drupal Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/492 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiLZtoACgkQZ7NElSD1VhkfuQCfaFA0gniOn4SYxqdrwC7xuM3v 6kUAnAj+QoASqRp3Y6AYFg7ZgP97R+bD =vB68 -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sat Jul 26 21:20:59 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sat Jul 26 21:21:02 2008 Subject: [Frugalware-security] [ FSA-493 ] drupal Message-ID: <20080726192059.2662C1190A09@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-493 Date: 2008-07-26 Package: drupal Vulnerable versions: <= 5.7-1 Unaffected versions: >= 5.9-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3256 CVE: There is no CVE for this issue, see http://drupal.org/node/286417 Description =========== A vulnerability has been reported in Drupal, which can be exploited by malicious people to conduct session fixation attacks. An error in the handling of certain sessions can be exploited to hijack another user's session by tricking the user into logging in after following a specially crafted link. Updated Packages ================ Check if you have drupal installed: # pacman-g2 -Q drupal If found, then you should upgrade to the latest version: # pacman-g2 -Sy drupal Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/493 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiLeRsACgkQZ7NElSD1Vhmm7wCfciuvd5y0+3Q+QZFGER8EIzBx ugUAn0gdv1MjCbGpGJ0YKLcb7K/0L3/A =yEOh -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sat Jul 26 21:25:53 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sat Jul 26 21:25:56 2008 Subject: [Frugalware-security] [ FSA-494 ] wireshark Message-ID: <20080726192553.8D96B1190A09@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-494 Date: 2008-07-26 Package: wireshark Vulnerable versions: <= 1.0.1-1kalgan1 Unaffected versions: >= 1.0.2-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3224 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3145 Description =========== A vulnerability has been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error when reassembling packets and can be exploited to cause the application to crash when processing a series of malformed packets that are either captured off the wire or loaded via a capture file. Updated Packages ================ Check if you have wireshark installed: # pacman-g2 -Q wireshark If found, then you should upgrade to the latest version: # pacman-g2 -Sy wireshark Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/494 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiLekEACgkQZ7NElSD1Vhm6XgCcDkatgM+eHxp6Io01GaTK8ObQ mLcAmwbLAoAQ0d1x4TlZBFa4EM8nZTXy =+0oh -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sat Jul 26 21:27:48 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sat Jul 26 21:27:51 2008 Subject: [Frugalware-security] [ FSA-495 ] bind Message-ID: <20080726192748.5DA011190A09@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-495 Date: 2008-07-26 Package: bind Vulnerable versions: <= 9.4.2-2 Unaffected versions: >= 9.4.2-3kalgan1 Related bugreport: http://bugs.frugalware.org/task/3219 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447 Description =========== A vulnerability has been reported in ISC BIND, which can be exploited by malicious people to poison the DNS cache. The vulnerability is caused due to the DNS servers not sufficiently randomising the DNS query port number, which can be exploited to poison the DNS cache. Updated Packages ================ Check if you have bind installed: # pacman-g2 -Q bind If found, then you should upgrade to the latest version: # pacman-g2 -Sy bind Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/495 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiLerQACgkQZ7NElSD1Vhm7EACbBwtEOpJpBDcl6XNCz0Vv36xD 03MAoI5ttz6qe3MI0+LFNuEJ7yIXDRO+ =yyG/ -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Jul 27 16:31:10 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun Jul 27 16:31:11 2008 Subject: [Frugalware-security] [ FSA-496 ] bind Message-ID: <20080727143110.3186C1190A0A@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-496 Date: 2008-07-27 Package: bind Vulnerable versions: <= 5.10.0-3 Unaffected versions: >= 5.10.0-4kalgan1 Related bugreport: http://bugs.frugalware.org/task/3210 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2827 Description =========== Description: A vulnerability has been reported in Perl, which can be exploited by malicious, local user to perform actions with escalated privileges. The vulnerability is caused due to the insecure use of chmod on symbolic links and can be exploited to change permissions of arbitrary files to 0777 via symlink attacks. Updated Packages ================ Check if you have bind installed: # pacman-g2 -Q bind If found, then you should upgrade to the latest version: # pacman-g2 -Sy bind Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/496 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiMhq4ACgkQZ7NElSD1VhlFagCfZTVkaaK51bNtwzlpkhK3plJo viAAn0cZ20ItRA4OCYEPzSy3wski0akv =eiol -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Jul 27 16:34:28 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun Jul 27 16:34:31 2008 Subject: [Frugalware-security] [ FSA-497 ] byacc Message-ID: <20080727143428.D5AEE1190A09@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-497 Date: 2008-07-27 Package: byacc Vulnerable versions: <= 1.9-1 Unaffected versions: >= 1.9-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3251 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3196 Description =========== Otto Moerbeck has reported the following potential out of bounds of the allocated stack access in the yacc binary: Fix an venerable bug: if we're reducing a rule that has an empty right hand side and the yacc stackpointer is pointing at the very end of the allocated stack, we end up accessing the stack out of bounds by the implicit $$ = $1 action. Detected by my new malloc. Updated Packages ================ Check if you have byacc installed: # pacman-g2 -Q byacc If found, then you should upgrade to the latest version: # pacman-g2 -Sy byacc Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/497 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiMh3QACgkQZ7NElSD1VhnzuQCfaFV3ldCBcW4TH/BO9qpSGOG2 XvwAn18OcL+A+PmOYuClXvZdfnpu3+vV =889P -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Jul 27 16:39:01 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun Jul 27 16:39:04 2008 Subject: [Frugalware-security] [ FSA-498 ] checkinstall Message-ID: <20080727143901.397801190A09@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-498 Date: 2008-07-27 Package: checkinstall Vulnerable versions: <= 1.6.1-1 Unaffected versions: >= 1.6.1-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3209 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2958 Description =========== Two security issues have been reported in CheckInstall, which can be exploited by malicious, local users to perform certain actions with escalated privileges. The security issues are caused due to the "checkinstall" and "installwatch" scripts creating directories in an insecure manner. This can potentially be exploited via symlink attacks to delete or modify arbitrary files with the privileges of the user running the affected scripts. Updated Packages ================ Check if you have checkinstall installed: # pacman-g2 -Q checkinstall If found, then you should upgrade to the latest version: # pacman-g2 -Sy checkinstall Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/498 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiMiIUACgkQZ7NElSD1Vhl3XACfdHWCe3HQAKTSPnpsRD0hX69e X8UAn1jeYU1Dhoc5ZeyKyS9VyGqGm39X =dSNi -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Jul 27 16:41:12 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun Jul 27 16:41:14 2008 Subject: [Frugalware-security] [ FSA-499 ] ffmpeg Message-ID: <20080727144112.851DC1190A09@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-499 Date: 2008-07-27 Package: ffmpeg Vulnerable versions: <= 20070422-3 Unaffected versions: >= 20070422-4kalgan1 Related bugreport: http://bugs.frugalware.org/task/3252 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3162 Description =========== A vulnerability has been reported in FFmpeg, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error within the "str_read_packet()" function in libavformat/psxstr.c. This can be exploited to cause a heap-based buffer overflow via a specially crafted STR file. Updated Packages ================ Check if you have ffmpeg installed: # pacman-g2 -Q ffmpeg If found, then you should upgrade to the latest version: # pacman-g2 -Sy ffmpeg Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/499 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiMiQgACgkQZ7NElSD1Vhmc2gCgk3l/X3iQmbNuHn2jXGrkZtsN qzQAnROdvIw9mar/1fxnid5WndHTH0eM =Ap3F -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Jul 27 16:43:43 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun Jul 27 16:43:46 2008 Subject: [Frugalware-security] [ FSA-500 ] pidgin Message-ID: <20080727144343.ED8A31190A09@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-500 Date: 2008-07-27 Package: pidgin Vulnerable versions: <= 2.3.1-2 Unaffected versions: >= 2.4.3-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3217 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2927 Description =========== Some vulnerabilities have been reported in Pidgin, which potentially can be exploited by malicious people to compromise a user's system. The vulnerabilities are caused due to integer overflow errors in the "msn_slplink_process_msg" function in libpurple/protocols/msnp9/slplink.c and libpurple/protocols/msn/slplink.c, and can potentially be exploited to execute arbitrary code via a specially crafted SLP message. Successful exploitation requires that the attacker is allowed to send messages to a victim (by default only users in the buddy list). Updated Packages ================ Check if you have pidgin installed: # pacman-g2 -Q pidgin If found, then you should upgrade to the latest version: # pacman-g2 -Sy pidgin Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/500 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiMiZ8ACgkQZ7NElSD1VhmvAQCfTvMEMaGjsBdSfoOumrcb17Hg SrUAnRv32fZYkLe2Gl/WowNnaAA3nK7q =GF6V -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Jul 27 16:46:17 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun Jul 27 16:46:19 2008 Subject: [Frugalware-security] [ FSA-501 ] phpbb Message-ID: <20080727144617.602321190A09@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-501 Date: 2008-07-27 Package: phpbb Vulnerable versions: <= 2.0.22-1 Unaffected versions: >= 3.0.2-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3244 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3224 Description =========== Unspecified vulnerability in phpBB before 3.0.1 has unknown impact and attack vectors related to "urls gone through redirect() being used within login_box()." Updated Packages ================ Check if you have phpbb installed: # pacman-g2 -Q phpbb If found, then you should upgrade to the latest version: # pacman-g2 -Sy phpbb Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/501 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiMijkACgkQZ7NElSD1VhkcYQCbBfUUNm10d/rElkhHmGckOaox t5AAn0GtAPKz+ADayMhHR+wYTY+yja6P =lhGr -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Jul 27 16:49:05 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun Jul 27 16:49:07 2008 Subject: [Frugalware-security] [ FSA-502 ] afuse Message-ID: <20080727144905.1F6461190A09@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-502 Date: 2008-07-27 Package: afuse Vulnerable versions: <= 0.2-1 Unaffected versions: >= 0.2-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3243 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2232 Description =========== Anders Kaseorg discovered that afuse, an automounting file system in user-space, did not properly escape meta characters in paths. This allowed a local attacker with read access to the filesystem to execute commands as the owner of the filesystem. Updated Packages ================ Check if you have afuse installed: # pacman-g2 -Q afuse If found, then you should upgrade to the latest version: # pacman-g2 -Sy afuse Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/502 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiMiuEACgkQZ7NElSD1VhlkLwCbBp123YdtKtjMtnpdbyAn55cF //YAn13aV1T3U5qKZ55TfUOOTee4mqEz =aBd6 -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Jul 27 16:51:20 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun Jul 27 16:51:23 2008 Subject: [Frugalware-security] [ FSA-503 ] openldap Message-ID: <20080727145120.37A8F1190A09@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-503 Date: 2008-07-27 Package: openldap Vulnerable versions: <= 2.3.41-1 Unaffected versions: >= 2.3.43-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3207 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2952 Description =========== A vulnerability has been reported in OpenLDAP, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the "ber_get_next()" function in libraries/liblber/io.c. This can be exploited to trigger an "assert()" and terminate the "slapd" process via a specially crafted ASN.1 BER encoded packet. Updated Packages ================ Check if you have openldap installed: # pacman-g2 -Q openldap If found, then you should upgrade to the latest version: # pacman-g2 -Sy openldap Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/503 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkiMi2gACgkQZ7NElSD1Vhn4jACgkVmebRhnZf+kv8uWST4FTRhv azcAn2vGMHG/7thaBNAygPEFhKFSowdX =tsMp -----END PGP SIGNATURE-----