From vmiklos at frugalware.org Fri Jun 6 18:57:22 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 6 18:57:24 2008 Subject: [Frugalware-security] [ FSA-463 ] openssl Message-ID: <20080606165722.D24D81770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-463 Date: 2008-06-06 Package: openssl Vulnerable versions: <= 0.9.8-11 Unaffected versions: >= 0.9.8-12kalgan1 Related bugreport: http://bugs.frugalware.org/task/3114 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0891 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1672 Description =========== Two vulnerabilities have been reported in OpenSSL, which can be exploited by malicious people to cause a DoS (Denial of Service). 1) A double-free error in the handling of server name extension data if "server_name" set to 0x00 can be exploited to crash a server application using OpenSSL by sending a specially crafted TLS 1.0 Client Hello packet. Successful exploitation requires that OpenSSL is compiled using the TLS server name extensions. 2) A NULL pointer dereference error can be exploited by a malicious server to crash a client application when the "Server Key exchange message" is omitted from a TLS handshake and anonymous Diffie-Hellman key exchange is used. Updated Packages ================ Check if you have openssl installed: # pacman-g2 -Q openssl If found, then you should upgrade to the latest version: # pacman-g2 -Sy openssl Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/463 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhJbHIACgkQZ7NElSD1Vhl3yACfT9jNNLDJgV5VPaT+6jlMAJmX pgEAniXYCQMoMvoyw1eKZ2+d3yFg/a1h =LYH/ -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 6 19:06:57 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 6 19:06:59 2008 Subject: [Frugalware-security] [ FSA-464 ] horde-webmail Message-ID: <20080606170657.600EE1190AC9@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-464 Date: 2008-06-06 Package: horde-webmail Vulnerable versions: <= 1.0.6-1kalgan1 Unaffected versions: >= 1.1-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3120 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6018 Description =========== Secunia Research has discovered a vulnerability in IMP Webmail Client and Horde Groupware Webmail Edition, which can be exploited by malicious people to bypass certain security restrictions and manipulate data. The HTML filter does not filter out frame and frameset HTML elements. Additionally, the application allows users to perform certain actions via HTTP requests without performing any validity checks to verify the request. This can be exploited to (a) delete an arbitrary number of e-mail messages by referencing their numeric IDs and (b) purge deleted mails, when the victim opens a malicious HTML mail. Successful exploitation requires that the victim opens the HTML part of a malicious message. Updated Packages ================ Check if you have horde-webmail installed: # pacman-g2 -Q horde-webmail If found, then you should upgrade to the latest version: # pacman-g2 -Sy horde-webmail Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/464 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhJbrEACgkQZ7NElSD1Vhl+SgCfallpf98vZso1GSG1++yykc75 FBsAoJxHqTKR7jEk06MBMugbZi5Lu02H =qKuQ -----END PGP SIGNATURE----- From vmiklos at frugalware.org Tue Jun 10 13:08:37 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Tue Jun 10 13:08:41 2008 Subject: [Frugalware-security] [ FSA-465 ] net-snmp Message-ID: <20080610110837.B19741770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-465 Date: 2008-06-10 Package: net-snmp Vulnerable versions: <= 5.4.1-3 Unaffected versions: >= 5.4.1-4kalgan1 Related bugreport: http://bugs.frugalware.org/task/3092 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2292 Description =========== A vulnerability has been reported in Net-snmp, which potentially can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error within the "__snprint_value()" function in perl/SNMP/SNMP.xs. This can be exploited to cause a buffer overflow in an application using the Net-snmp Perl module by tricking the user into connecting to a malicious SNMP agent. Updated Packages ================ Check if you have net-snmp installed: # pacman-g2 -Q net-snmp If found, then you should upgrade to the latest version: # pacman-g2 -Sy net-snmp Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/465 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhOYLUACgkQZ7NElSD1VhkiLgCgm2JZPI5L3ca9RCALy2Vs/Tqu eYQAn3ya/6exgqrAPWZEAEa4/x6Zcgau =y3fT -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 13 16:00:42 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 13 16:00:47 2008 Subject: [Frugalware-security] [ FSA-466 ] rxvt Message-ID: <20080613140042.746801770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-466 Date: 2008-06-13 Package: rxvt Vulnerable versions: <= 2.6.4-2 Unaffected versions: >= 2.7.10-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/2925 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1142 Description =========== Bernhard R. Link has reported a security issue in rxvt, which can be exploited by malicious, local users to gain escalated privileges. The security issue is caused due to the program using ":0" as it's X11 display if the DISPLAY environment variable is missing. This can be exploited to execute arbitrary commands with the privileges of the user running rxvt via a malicious X server. Updated Packages ================ Check if you have rxvt installed: # pacman-g2 -Q rxvt If found, then you should upgrade to the latest version: # pacman-g2 -Sy rxvt Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/466 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhSfYoACgkQZ7NElSD1VhlIAwCfa8lGpBSCE+sg4GEhYtUSrYZ0 KU8AnjwY/MNiyz+E6h1qqA6XDP9y4+aL =5G1n -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 13 16:03:17 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 13 16:03:19 2008 Subject: [Frugalware-security] [ FSA-467 ] aterm Message-ID: <20080613140317.08FAD1770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-467 Date: 2008-06-13 Package: aterm Vulnerable versions: <= 1.0.1-1 Unaffected versions: >= 1.0.1-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3088 CVE: There is no CVE for this issue. Description =========== A security issue has been reported in aterm, which can be exploited by malicious, local users to gain escalated privileges. For more information, see FSA466. Updated Packages ================ Check if you have aterm installed: # pacman-g2 -Q aterm If found, then you should upgrade to the latest version: # pacman-g2 -Sy aterm Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/467 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhSfiUACgkQZ7NElSD1VhlVtQCeMjopZIgsS+WO7dcjkycXQRF3 sUAAn1JvfwKrGaVU3oZCOaKrpbaqhNE2 =nvdJ -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 13 16:05:14 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 13 16:05:16 2008 Subject: [Frugalware-security] [ FSA-468 ] rxvt-unicode Message-ID: <20080613140514.0F7FA1770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-468 Date: 2008-06-13 Package: rxvt-unicode Vulnerable versions: <= 9.02-1 Unaffected versions: >= 9.02-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3089 CVE: There is no CVE for this issue. Description =========== A security issue has been reported in rxvt-unicode, which can be exploited by malicious, local users to gain escalated privileges. For more information, see FSA466. Updated Packages ================ Check if you have rxvt-unicode installed: # pacman-g2 -Q rxvt-unicode If found, then you should upgrade to the latest version: # pacman-g2 -Sy rxvt-unicode Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/468 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhSfpoACgkQZ7NElSD1Vhk54gCgmW3U8KlHybi9neaqRtCu3WZb OQoAn0ZZD0iPp127S8gQd2NaFQdeu/AJ =N5GJ -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 13 16:07:30 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 13 16:07:33 2008 Subject: [Frugalware-security] [ FSA-469 ] mrxvt Message-ID: <20080613140730.71E2E1770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-469 Date: 2008-06-13 Package: mrxvt Vulnerable versions: <= 0.5.3-1 Unaffected versions: >= 0.5.3-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3090 CVE: There is no CVE for this issue. Description =========== A security issue has been reported in mrxvt, which can be exploited by malicious, local users to gain escalated privileges. For more information, see FSA466. Updated Packages ================ Check if you have mrxvt installed: # pacman-g2 -Q mrxvt If found, then you should upgrade to the latest version: # pacman-g2 -Sy mrxvt Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/469 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhSfyIACgkQZ7NElSD1VhnY1ACeIsWERwHXgkC4SJu6UfX4My2U nOMAn2GvFdsKdA+a3LvGcnQm1mBDEiKY =mRc6 -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 13 16:12:34 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 13 16:12:35 2008 Subject: [Frugalware-security] [ FSA-450 ] imlib2 Message-ID: <20080613141234.0B62D1770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-450 Date: 2008-06-13 Package: imlib2 Vulnerable versions: <= 1.4.0-1 Unaffected versions: >= 1.4.0-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3124 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2426 Description =========== Secunia Research has discovered two vulnerabilities in imlib2, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library. 1) A boundary error exists within the "load()" function in src/modules/loaders/loader_pnm.c when processing the header of a PNM image file. This can be exploited to cause a stack-based buffer overflow by e.g. tricking a user into opening a specially crafted PNM image in an application using the imlib2 library. Successful exploitation allows execution of arbitrary code. 2) A boundary error exists within the "load()" function in src/modules/loader_xpm.c when processing an XPM image file. This can be exploited to cause a stack-based buffer overflow by e.g. tricking a user into opening a specially crafted XPM image in an application using the imlib2 library. Successful exploitation may allow execution of arbitrary code. Updated Packages ================ Check if you have imlib2 installed: # pacman-g2 -Q imlib2 If found, then you should upgrade to the latest version: # pacman-g2 -Sy imlib2 Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/450 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhSgFIACgkQZ7NElSD1Vhm8nQCaA1Ww50Zwkc+xUXR0hK0eqS4J p7gAn3gOyatbNEbg+lsolvg1c8AeAYYI =j8kC -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 13 16:14:53 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 13 16:14:56 2008 Subject: [Frugalware-security] [ FSA-451 ] stunnel Message-ID: <20080613141453.F3FBF1770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-451 Date: 2008-06-13 Package: stunnel Vulnerable versions: <= 4.21-1 Unaffected versions: >= 4.24-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3122 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2420 Description =========== A security issue has been reported in Stunnel, which can be exploited by malicious people to bypass certain security restrictions. The security issue is caused due to an unspecified error in the OCSP functionality and can lead to a revoked certificate being successfully authenticated. Updated Packages ================ Check if you have stunnel installed: # pacman-g2 -Q stunnel If found, then you should upgrade to the latest version: # pacman-g2 -Sy stunnel Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/451 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhSgN0ACgkQZ7NElSD1Vhne4gCdH9teSMVxLHNsH34a64ki8lR0 xEwAoIqKh0ijRq3diJ+ZgA8Tl2vkNHgp =Uwqg -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 13 16:16:49 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 13 16:16:50 2008 Subject: [Frugalware-security] [ FSA-452 ] emacs Message-ID: <20080613141649.6AC3A1770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-452 Date: 2008-06-13 Package: emacs Vulnerable versions: <= 22.1-3kalgan1 Unaffected versions: >= 22.1-3kalgan2 Related bugreport: http://bugs.frugalware.org/task/3086 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2142 Description =========== Morten Welinder has reported a vulnerability in GNU Emacs, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error in the processing of fast-lock files (.flc) for corresponding source files. This can be exploited to execute arbitrary Emacs Lisp code when e.g. a source file is opened and a specially crafted fast-lock file exists in the same directory. Successful exploitation requires that "font-lock-support-mode" is set to "fast-lock-mode". Updated Packages ================ Check if you have emacs installed: # pacman-g2 -Q emacs If found, then you should upgrade to the latest version: # pacman-g2 -Sy emacs Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/452 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhSgVEACgkQZ7NElSD1Vhki7wCeI+ei/bU+wFfggVewLoGQxibU yiIAn2j80dgTv81TPTW+w3xoQgEPOKBI =Y0KR -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 13 16:19:06 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 13 16:19:07 2008 Subject: [Frugalware-security] [ FSA-453 ] libvorbis Message-ID: <20080613141906.4985C1770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-453 Date: 2008-06-13 Package: libvorbis Vulnerable versions: <= 1.2.0-1 Unaffected versions: >= 1.2.0-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3093 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1419 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1420 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1423 Description =========== Some vulnerabilities have been reported in libvorbis, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise an application using the library. 1) An input validation error can be exploited to crash an application, cause an infinite loop, or to cause a heap overflow via a specially crafted OGG file containing a codebook dimension of "0". 2) An integer overflow error in the processing of residue partition values can be exploited to cause a heap-based buffer overflow via a specially crafted OGG file. 3) An integer overflow error exists in the computation of "quantvals" and of required space for "quantlist". This can be exploited to cause a heap-based buffer overflow via a specially crafted OGG file. Successful exploitation may allow execution of arbitrary code. Updated Packages ================ Check if you have libvorbis installed: # pacman-g2 -Q libvorbis If found, then you should upgrade to the latest version: # pacman-g2 -Sy libvorbis Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/453 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhSgdoACgkQZ7NElSD1VhkXvgCdF5UL4drYQJuV4WYIlxjMHC7T mdkAn0uE2OJwwaRncUZDmMgPD9qriNJF =BhtR -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 13 16:21:19 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 13 16:21:21 2008 Subject: [Frugalware-security] [ FSA-454 ] blender Message-ID: <20080613142119.16D5D1770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-454 Date: 2008-06-13 Package: blender Vulnerable versions: <= 2.45-1 Unaffected versions: >= 2.45-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3039 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1102 Description =========== Secunia Research has discovered a vulnerability in Blender, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error within the "imb_loadhdr()" function in source/blender/imbuf/intern/radiance_hdr.c, which can be exploited to cause a stack-based buffer overflow by e.g. tricking a user into opening a specially crafted Blender (*.blend) file containing a malicious Radiance RGBE image. Successful exploitation allows execution of arbitrary code. Updated Packages ================ Check if you have blender installed: # pacman-g2 -Q blender If found, then you should upgrade to the latest version: # pacman-g2 -Sy blender Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/454 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhSgl8ACgkQZ7NElSD1VhmxEQCfXI+YDwGxWodrXGHKTnOv3ewG Zp8AnAiJ8W+l6w5OW7Y6QYxiRp5lGS71 =igJM -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 13 16:23:52 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 13 16:23:54 2008 Subject: [Frugalware-security] [ FSA-455 ] samba Message-ID: <20080613142352.3D0491770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-455 Date: 2008-06-13 Package: samba Vulnerable versions: <= 3.0.28-1 Unaffected versions: >= 3.0.30-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3115 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1105 Description =========== Secunia Research has discovered a vulnerability in Samba, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error within the "receive_smb_raw()" function in lib/util_sock.c when parsing SMB packets. This can be exploited to cause a heap-based buffer overflow via an overly large SMB packet received in a client context. Successful exploitation allows execution of arbitrary code by tricking a user into connecting to a malicious server (e.g. by clicking an "smb://" link) or by sending specially crafted packets to an "nmbd" server configured as a local or domain master browser. Updated Packages ================ Check if you have samba installed: # pacman-g2 -Q samba If found, then you should upgrade to the latest version: # pacman-g2 -Sy samba Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/455 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhSgvgACgkQZ7NElSD1VhmCWQCfRts5ug3b19SIQSFtlWSSAY9P nT4An2WwT3el4zWBofvEes+NRx/e2EUY =I2iV -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 13 16:26:42 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 13 16:26:44 2008 Subject: [Frugalware-security] [ FSA-456 ] asterisk-addons Message-ID: <20080613142642.81B8E1770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-456 Date: 2008-06-13 Package: asterisk-addons Vulnerable versions: <= 1.4.4-1 Unaffected versions: >= 1.4.7-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3136 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2543 Description =========== A vulnerability has been reported in Asterisk Addons, which can be exploited by malicious people to cause a DoS (Denial of Service). The problem is that the "ooh323" channel driver extracts memory addresses from incoming TCP packets and uses them in memory operations. This can be exploited to crash an affected application by sending a TCP packet containing invalid memory references. Updated Packages ================ Check if you have asterisk-addons installed: # pacman-g2 -Q asterisk-addons If found, then you should upgrade to the latest version: # pacman-g2 -Sy asterisk-addons Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/456 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhSg6IACgkQZ7NElSD1VhkFIgCdFXCG/HhxijotbC5f/ttHsvRw 91YAn3cyXZKw2rIYtzYNs40cMgYFUtrn =gXll -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 13 16:29:29 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 13 16:29:31 2008 Subject: [Frugalware-security] [ FSA-457 ] graphicsmagick Message-ID: <20080613142929.33DE11770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-457 Date: 2008-06-13 Package: graphicsmagick Vulnerable versions: <= 1.1.12-1kalgan1 Unaffected versions: >= 1.1.14-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3137 CVE: There is no CVE for this issue, see: http://sourceforge.net/project/shownotes.php?release_id=604785 http://sourceforge.net/project/shownotes.php?release_id=604837 Description =========== Some vulnerabilities have been reported in GraphicsMagick, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. 1) Two boundary errors exist within the "ReadPALMImage()" function in coders/palm.c. These can be exploited to cause a heap-based buffer underflow via a specially crafted PALM image. 2) A boundary error exists within the "DecodeImage()" function in coders/pict.c. This can be exploited to cause a heap-based buffer overflow via a specially crafted PICT image. 3) Multiple unspecified errors within the processing of XCF, DPX, and CINEON images can be exploited to crash the application. Successful exploitation may allow execution of arbitrary code. Updated Packages ================ Check if you have graphicsmagick installed: # pacman-g2 -Q graphicsmagick If found, then you should upgrade to the latest version: # pacman-g2 -Sy graphicsmagick Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/457 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhShEkACgkQZ7NElSD1VhlmcACfYfa+GCX6kPX9roJcBF9sRxfh gZoAoJh6DghqNREh1uy+aZxCVFqudmVY =0+hD -----END PGP SIGNATURE----- From vmiklos at frugalware.org Fri Jun 13 16:37:14 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Fri Jun 13 16:37:16 2008 Subject: [Frugalware-security] [ FSA-458 ] xdvik Message-ID: <20080613143714.98DAD1770022@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-458 Date: 2008-06-13 Package: xdvik Vulnerable versions: <= 22.84.12-1 Unaffected versions: >= 22.84.14-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3127 CVE: There is no CVE for this issue, see http://xdvi.sourceforge.net/releases.html#22.84.14 Description =========== A security issue has been reported in xdvik, which can be exploited by malicious, local users. The vulnerability is caused by creating predictably named temporary files by using mktemp. Updated Packages ================ Check if you have xdvik installed: # pacman-g2 -Q xdvik If found, then you should upgrade to the latest version: # pacman-g2 -Sy xdvik Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/458 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhShhoACgkQZ7NElSD1VhnwVgCfY3Me/hZwuBMAYPdhLJXiIpbb MsEAn3HXcNvbO1PAvTZCV7N/3DI/Rp/s =R2al -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sat Jun 21 14:44:49 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sat Jun 21 14:44:51 2008 Subject: [Frugalware-security] [ FSA-478 ] xdvik Message-ID: <20080621124449.BED411190ADA@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-478 Date: 2008-06-13 Package: xdvik Vulnerable versions: <= 22.84.12-1 Unaffected versions: >= 22.84.14-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3127 CVE: There is no CVE for this issue, see http://xdvi.sourceforge.net/releases.html#22.84.14 Description =========== A security issue has been reported in xdvik, which can be exploited by malicious, local users. The vulnerability is caused by creating predictably named temporary files by using mktemp. Updated Packages ================ Check if you have xdvik installed: # pacman-g2 -Q xdvik If found, then you should upgrade to the latest version: # pacman-g2 -Sy xdvik Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/478 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhc98EACgkQZ7NElSD1VhmlIACePjvIdSNdcVsGEOOdyFq0XKCt 93EAnjwFwh5s5JPzDnGEMDrUejiScRgk =j0mw -----END PGP SIGNATURE----- From vmiklos at frugalware.org Tue Jun 24 22:18:48 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Tue Jun 24 22:18:50 2008 Subject: [Frugalware-security] [ FSA-479 ] kernel Message-ID: <20080624201848.CAEA01770071@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-479 Date: 2008-06-24 Package: kernel Vulnerable versions: <= 2.6.24-4kalgan2 Unaffected versions: >= 2.6.24-4kalgan3 Related bugreport: http://bugs.frugalware.org/task/3140 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1673 Description =========== A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. The vulnerability is caused due to an error within the ASN.1 BER decoder of the cifs and ip_nat_snmp_basic modules when calculating the buffer size. This can be exploited to cause a crash or potentially execute arbitrary code by sending specially crafted BER encoded data to a vulnerable system. Updated Packages ================ Check if you have kernel installed: # pacman-g2 -Q kernel If found, then you should upgrade to the latest version: # pacman-g2 -Sy kernel Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/479 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhhVqgACgkQZ7NElSD1VhmQ3wCfb4EwewA4tyQE7ZJg0tWCtbdj zFAAnA2VDRM2yaF0eGit3eOvd1Un1UpN =E2PY -----END PGP SIGNATURE----- From vmiklos at frugalware.org Thu Jun 26 18:19:34 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Thu Jun 26 18:19:37 2008 Subject: [Frugalware-security] [ FSA-480 ] exiv2 Message-ID: <20080626161934.91D23177001C@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-480 Date: 2008-06-26 Package: exiv2 Vulnerable versions: <= 0.16-1 Unaffected versions: >= 0.16-2kalgan1 Related bugreport: http://bugs.frugalware.org/task/3135 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2696 Description =========== A vulnerability has been reported in Exiv2, which potentially can be exploited by malicious people to crash an application using the library. The vulnerability is caused due to a floating point exception within the pretty printing functionality when processing certain Nicon camera lens information. This can be exploited to crash an application linked against the Exiv2 library when a image containing specially-crafted metadata is processed. Updated Packages ================ Check if you have exiv2 installed: # pacman-g2 -Q exiv2 If found, then you should upgrade to the latest version: # pacman-g2 -Sy exiv2 Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/480 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhjwZYACgkQZ7NElSD1VhmT3QCeKxfvdAt/H0gIzqxIJsksEMAA 88EAnjQKLdm586Jp6bd/EYTSsBK9Kf9B =uRJy -----END PGP SIGNATURE----- From vmiklos at frugalware.org Thu Jun 26 18:36:34 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Thu Jun 26 18:36:37 2008 Subject: [Frugalware-security] [ FSA-481 ] horde-webmail Message-ID: <20080626163634.6A17C177001C@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-481 Date: 2008-06-26 Package: horde-webmail Vulnerable versions: <= 1.1-1kalgan1 Unaffected versions: >= 1.1.1-1kalgan1 Related bugreport: http://bugs.frugalware.org/task/3167 CVE: There is no CVE for this issue, see http://lists.horde.org/archives/announce/2008/000420.html. Description =========== Some vulnerabilities have been reported in various Horde products, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting attacks. 1) Input passed to item names is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is viewed. Successful exploitation requires valid user credentials. 2) Input passed to contact views is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is viewed. Successful exploitation requires valid user credentials. 3) Input passed to unspecified input is not properly sanitised before being returned to the user in the add event screen. This can be exploited to execute arbitrary HTML and script code in a user's browser session in contact of an affected site. Updated Packages ================ Check if you have horde-webmail installed: # pacman-g2 -Q horde-webmail If found, then you should upgrade to the latest version: # pacman-g2 -Sy horde-webmail Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/481 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhjxZIACgkQZ7NElSD1VhnKkwCgld34cMMMgBViEVocHWcoYAck uvMAnRtysz/1RuNkREvuSlV2XdbTYpO1 =n+d9 -----END PGP SIGNATURE----- From vmiklos at frugalware.org Thu Jun 26 18:46:57 2008 From: vmiklos at frugalware.org (Miklos Vajna) Date: Thu Jun 26 18:47:01 2008 Subject: [Frugalware-security] [ FSA-482 ] net-snmp Message-ID: <20080626164657.6A8F3177001C@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-482 Date: 2008-06-26 Package: net-snmp Vulnerable versions: <= 5.4.1-4kalgan1 Unaffected versions: >= 5.4.1-4kalgan2 Related bugreport: http://bugs.frugalware.org/task/3142 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0960 Description =========== A vulnerability has been reported in Net-SNMP, which can be exploited by malicious people to spoof authenticated SNMPv3 packets. The vulnerability is caused due to an error within the verification of the HMAC digest. This can be exploited to increase the chance of successfully spoofing a packet to 1 in 256 by sending a specially crafted SNMPv3 packet with an incomplete 1 byte HMAC digest. Successful exploitation requires a valid username. Updated Packages ================ Check if you have net-snmp installed: # pacman-g2 -Q net-snmp If found, then you should upgrade to the latest version: # pacman-g2 -Sy net-snmp Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/482 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAkhjyAEACgkQZ7NElSD1VhnOgQCgirtmTSxzK/5Um4+heJ1Wzra4 ZyAAnR73zfJUeS332GEFZCSvEm2XdymO =bct3 -----END PGP SIGNATURE-----