From vmiklos at frugalware.org  Mon Nov  3 20:07:00 2008
From: vmiklos at frugalware.org (Miklos Vajna)
Date: Mon Nov  3 20:07:04 2008
Subject: [Frugalware-security] [ FSA-547 ] openoffice.org
Message-ID: <20081103190700.A297E119019C@genesis.frugalware.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Frugalware Security Advisory                           FSA-547

Date: 2008-11-03
Package: openoffice.org
Vulnerable versions: <= 2.4.1-1
Unaffected versions: >= 2.4.1-2solaria1
Related bugreport: http://bugs.frugalware.org/task/3429
CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2237
			http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2238

Description
===========

Some vulnerabilities have been reported in OpenOffice, which potentially can be exploited by malicious people to compromise a user's system.
1) An error in the processing of WMF files can be exploited to cause a heap-based buffer overflow via a specially crafted StarOffice/StarSuite document.
2) Multiple integer overflows when parsing certain EMR records of EMF files can be exploited to cause heap-based buffer overflows via a specially crafted StarOffice/StarSuite document.
Successful exploitation of the vulnerabilities may allow execution of arbitrary code.

Updated Packages
================

Check if you have openoffice.org installed:

	# pacman-g2 -Q openoffice.org

If found, then you should upgrade to the latest version:

	# pacman-g2 -Sy openoffice.org

Availability
============

The latest revision of this advisory is available at
http://frugalware.org/security/547

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: See http://ftp.frugalware.org/pub/README.GPG for info

iEYEARECAAYFAkkPS9QACgkQZ7NElSD1Vhnw/QCfRxdoBK570UWXb6IRslVhOx0K
IMIAoIEZ0HEAzeqpJwf3agGQb0GKma7j
=azHn
-----END PGP SIGNATURE-----
From vmiklos at frugalware.org  Tue Nov 18 23:18:56 2008
From: vmiklos at frugalware.org (Miklos Vajna)
Date: Tue Nov 18 23:18:59 2008
Subject: [Frugalware-security] [ FSA-548 ] drupal
Message-ID: <20081118221856.945161190001@genesis.frugalware.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Frugalware Security Advisory                           FSA-548

Date: 2008-11-16
Package: drupal
Vulnerable versions: <= 5.11-1solaria1
Unaffected versions: >= 5.12-1solaria1
Related bugreport: http://bugs.frugalware.org/task/3419
CVE: No CVE for this issue, see http://drupal.org/node/324833

Description
===========

A vulnerability has been reported in Drupal, which can potentially be exploited by malicious, local users to gain escalated privileges.
Input passed to unspecified parameters is not properly verified before being used to include files. This can be exploited to include specially named files from local resources and potentially escalate privileges.
Successful exploitation requires that the web server is configured to use virtual hosts.

Updated Packages
================

Check if you have drupal installed:

	# pacman-g2 -Q drupal

If found, then you should upgrade to the latest version:

	# pacman-g2 -Sy drupal

Availability
============

The latest revision of this advisory is available at
http://frugalware.org/security/548

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: See http://ftp.frugalware.org/pub/README.GPG for info

iEYEARECAAYFAkkjP1AACgkQZ7NElSD1VhlciQCeL8WiybVJboXUNRkgizzWhbT4
DboAoKMI10UWw+FhFMefstEa8UqsXOsf
=P2Db
-----END PGP SIGNATURE-----
From vmiklos at frugalware.org  Tue Nov 18 23:22:27 2008
From: vmiklos at frugalware.org (Miklos Vajna)
Date: Tue Nov 18 23:22:30 2008
Subject: [Frugalware-security] [ FSA-549 ] drupal6
Message-ID: <20081118222227.D8F0E1190001@genesis.frugalware.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Frugalware Security Advisory                           FSA-549

Date: 2008-11-16
Package: drupal6
Vulnerable versions: <= 6.5-1solaria1
Unaffected versions: >= 6.6-1solaria1
Related bugreport: http://bugs.frugalware.org/task/3420
CVE: No CVE for this issue, see http://drupal.org/node/324832

Description
===========

Two vulnerabilities have been reported in Drupal, which can be exploited by malicious users to conduct script insertion attacks.
An input passed as book page titles is not properly sanitised before being stored. This can be exploited to insert arbitrary HTML and script code, which is executed in a user's browser session in context of an affected site when the malicious data is viewed.
For more info about the other issue, see FSA548.
Successful exploitation requires valid user credentials with the "create book content" permission or the permission to edit book nodes.

Updated Packages
================

Check if you have drupal6 installed:

	# pacman-g2 -Q drupal6

If found, then you should upgrade to the latest version:

	# pacman-g2 -Sy drupal6

Availability
============

The latest revision of this advisory is available at
http://frugalware.org/security/549

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: See http://ftp.frugalware.org/pub/README.GPG for info

iEYEARECAAYFAkkjQCMACgkQZ7NElSD1VhlBKQCaAtAsXxG7ECiLkvwUVf5P/ooH
XUEAniU0UIgqJPuONqCSKBFVLp6R92/g
=M9pd
-----END PGP SIGNATURE-----
From vmiklos at frugalware.org  Tue Nov 18 23:27:23 2008
From: vmiklos at frugalware.org (Miklos Vajna)
Date: Tue Nov 18 23:27:25 2008
Subject: [Frugalware-security] [ FSA-550 ] wordpress
Message-ID: <20081118222723.12CA11190001@genesis.frugalware.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Frugalware Security Advisory                           FSA-550

Date: 2008-11-16
Package: wordpress
Vulnerable versions: <= 2.6.2-1solaria1
Unaffected versions: >= 2.6.3-1solaria1
Related bugreport: http://bugs.frugalware.org/task/3424
CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4796

Description
===========

A vulnerability in the Snoopy library was announced. WordPress uses Snoopy to fetch the feeds shown in the Dashboard. Although this seems to be a low risk vulnerability for WordPress users, they wanted to get an update out.

Updated Packages
================

Check if you have wordpress installed:

	# pacman-g2 -Q wordpress

If found, then you should upgrade to the latest version:

	# pacman-g2 -Sy wordpress

Availability
============

The latest revision of this advisory is available at
http://frugalware.org/security/550

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: See http://ftp.frugalware.org/pub/README.GPG for info

iEYEARECAAYFAkkjQUsACgkQZ7NElSD1VhmPhgCgpDwVSCFwrsgUF/POjFR0d3vy
Vb0An1qJB8GZOXs/U85kSmI1nL7O5fPw
=Dmpz
-----END PGP SIGNATURE-----
From vmiklos at frugalware.org  Tue Nov 18 23:30:12 2008
From: vmiklos at frugalware.org (Miklos Vajna)
Date: Tue Nov 18 23:30:14 2008
Subject: [Frugalware-security] [ FSA-551 ] phpmyadmin
Message-ID: <20081118223012.111E91190001@genesis.frugalware.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Frugalware Security Advisory                           FSA-551

Date: 2008-11-16
Package: phpmyadmin
Vulnerable versions: <= 2.11.9.2-1solaria1
Unaffected versions: >= 2.11.9.3-1solaria1
Related bugreport: http://bugs.frugalware.org/task/3436
CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4775

Description
===========

Hadi Kiamarsi has discovered a vulnerability in phpMyAdmin, which can be exploited by malicious people to conduct cross-site scripting attacks.
Input passed to the "db" parameter in pmd_pdf.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
Successful exploitation may require that the victim has valid user credentials.

Updated Packages
================

Check if you have phpmyadmin installed:

	# pacman-g2 -Q phpmyadmin

If found, then you should upgrade to the latest version:

	# pacman-g2 -Sy phpmyadmin

Availability
============

The latest revision of this advisory is available at
http://frugalware.org/security/551

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: See http://ftp.frugalware.org/pub/README.GPG for info

iEYEARECAAYFAkkjQfQACgkQZ7NElSD1VhmFiACffzX5zv0ZIfT3iYMsmc+vp7MT
ahMAoIDblFGkzJcQTG0uAgVo7IvKZUjK
=ErSW
-----END PGP SIGNATURE-----
From vmiklos at frugalware.org  Tue Nov 18 23:32:27 2008
From: vmiklos at frugalware.org (Miklos Vajna)
Date: Tue Nov 18 23:32:30 2008
Subject: [Frugalware-security] [ FSA-552 ] drupal-cck
Message-ID: <20081118223227.C1B071190001@genesis.frugalware.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Frugalware Security Advisory                           FSA-552

Date: 2008-11-16
Package: drupal-cck
Vulnerable versions: <= 5.x_1.10-1solaria1
Unaffected versions: >= 5.x_1.9-1
Related bugreport: http://bugs.frugalware.org/task/3444
CVE: No CVE for this issue, see http://drupal.org/node/330546.

Description
===========

Some vulnerabilities have been reported in the Drupal Content Construction Kit (CCK), which can be exploited by malicious users to conduct script insertion attacks.
Input passed to unspecified field labels and "content-type" names is not properly sanitised before being stored. This can be exploited to insert arbitrary HTML and script code, which is executed in a user's browser session in context of an affected site when the malicious data is viewed.
Successful exploitation requires "administer content" privileges.

Updated Packages
================

Check if you have drupal-cck installed:

	# pacman-g2 -Q drupal-cck

If found, then you should upgrade to the latest version:

	# pacman-g2 -Sy drupal-cck

Availability
============

The latest revision of this advisory is available at
http://frugalware.org/security/552

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: See http://ftp.frugalware.org/pub/README.GPG for info

iEYEARECAAYFAkkjQnsACgkQZ7NElSD1VhmkggCglyszEr8PHligY+4Ko/JYJNz7
87wAoJJ2misHDILrQjsqHtb/sis51m5B
=1m1F
-----END PGP SIGNATURE-----
From vmiklos at frugalware.org  Wed Nov 26 00:40:53 2008
From: vmiklos at frugalware.org (Miklos Vajna)
Date: Wed Nov 26 00:40:58 2008
Subject: [Frugalware-security] [ FSA-553 ] acroread
Message-ID: <20081125234053.CF070119019C@genesis.frugalware.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Frugalware Security Advisory                           FSA-553

Date: 2008-11-26
Package: acroread
Vulnerable versions: <= 8.1.2-1
Unaffected versions: >= 8.1.3-1solaria1
Related bugreport: http://bugs.frugalware.org/task/3440
CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2549
			http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2992
			http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4812
			http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4813
			http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4814
			http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4815
			http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4816
			http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4817

Description
===========

Multiple vulnerabilities have been reported in Adobe Reader/Acrobat, which can be exploited by malicious, local users to gain escalated privileges or by malicious people to compromise a user's system.
1) A boundary error exists when parsing format strings containing a floating point specifier in the "util.printf()" Javascript function. This can be exploited to cause a stack-based buffer overflow via a specially crafted PDF and allows execution of arbitrary code.
2) An out-of-bounds array indexing error when parsing embedded Type 1 fonts can be exploited to corrupt memory and may allow execution of arbitrary code.
3) An error in an AcroJS function used to perform HTTP authentication can be exploited to corrupt memory via an overly long string passed to the function. This may allow execution of arbitrary code.
4) An error when creating a Collab object and performing a specific sequence of actions on it can be exploited to corrupt memory. This may allow execution of arbitrary code.
5) An unspecified error when parsing malformed PDF objects can be exploited to corrupt memory, which may allow execution of arbitrary code.
6) An input validation error in the Download Manager used by Adobe Reader may allow code execution during the download process.
7) An error in the Download Manager used by Adobe Reader may result in a user's Internet Security options being changed during the download process.
8) An input validation error in a JavaScript method may allow code execution.
9) An unspecified privilege escalation vulnerability exists in the version for UNIX/Linux.

Updated Packages
================

Check if you have acroread installed:

	# pacman-g2 -Q acroread

If found, then you should upgrade to the latest version:

	# pacman-g2 -Sy acroread

Availability
============

The latest revision of this advisory is available at
http://frugalware.org/security/553

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: See http://ftp.frugalware.org/pub/README.GPG for info

iEYEARECAAYFAkksjQUACgkQZ7NElSD1VhnjUACdHKxl0Z0H3oz5W0++DSdLJ65K
PskAnRLDM2Aw6yRvf/2eYw0RmpaJzN3P
=ZgZj
-----END PGP SIGNATURE-----
From vmiklos at frugalware.org  Wed Nov 26 00:44:05 2008
From: vmiklos at frugalware.org (Miklos Vajna)
Date: Wed Nov 26 00:44:09 2008
Subject: [Frugalware-security] [ FSA-554 ] net-snmp
Message-ID: <20081125234405.E66AE119019C@genesis.frugalware.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Frugalware Security Advisory                           FSA-554

Date: 2008-11-26
Package: net-snmp
Vulnerable versions: <= 5.4.1.2-1
Unaffected versions: >= 5.4.2.1solaria1-1
Related bugreport: http://bugs.frugalware.org/task/3438
CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4309

Description
===========

A vulnerability has been reported in Net-snmp, which can be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an integer overflow error within the "netsnmp_create_subtree_cache()" function in agent/snmp_agent.c. This can be exploited to cause a crash via a specially crafted SNMP GETBULK request.

Updated Packages
================

Check if you have net-snmp installed:

	# pacman-g2 -Q net-snmp

If found, then you should upgrade to the latest version:

	# pacman-g2 -Sy net-snmp

Availability
============

The latest revision of this advisory is available at
http://frugalware.org/security/554

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: See http://ftp.frugalware.org/pub/README.GPG for info

iEYEARECAAYFAkksjcUACgkQZ7NElSD1Vhk2gQCdEnA4DT+GPl0aAegT/uDeatro
EvUAnRbWPYEfO6OUR8ReBVxhkSgUHSdy
=74QQ
-----END PGP SIGNATURE-----
From vmiklos at frugalware.org  Wed Nov 26 00:48:03 2008
From: vmiklos at frugalware.org (Miklos Vajna)
Date: Wed Nov 26 00:48:05 2008
Subject: [Frugalware-security] [ FSA-555 ] opensc
Message-ID: <20081125234803.8460F119019C@genesis.frugalware.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Frugalware Security Advisory                           FSA-555

Date: 2008-11-26
Package: opensc
Vulnerable versions: <= 0.11.5-1
Unaffected versions: >= 0.11.6-1solaria1
Related bugreport: http://bugs.frugalware.org/task/3415
CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2235
			http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3972

Description
===========

A security issue has been reported in OpenSC, which can be exploited by malicious people to bypass certain security restrictions.
The security issue is caused due to the application improperly setting the ADMIN file control information to "00" while initializing smart cards having a Siemens CardOS M4 operating system. This can be exploited to change a user PIN code without having the PIN or PUK if the smart card was initialized with OpenSC.

Updated Packages
================

Check if you have opensc installed:

	# pacman-g2 -Q opensc

If found, then you should upgrade to the latest version:

	# pacman-g2 -Sy opensc

Availability
============

The latest revision of this advisory is available at
http://frugalware.org/security/555

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: See http://ftp.frugalware.org/pub/README.GPG for info

iEYEARECAAYFAkksjrMACgkQZ7NElSD1Vhl1mQCghebHCLT8LJxFt62OM1LgoK6Q
chUAoJRWPhbp/k+wfG1KvQwCYJtcDcf3
=Phyy
-----END PGP SIGNATURE-----
From vmiklos at frugalware.org  Wed Nov 26 00:51:22 2008
From: vmiklos at frugalware.org (Miklos Vajna)
Date: Wed Nov 26 00:51:24 2008
Subject: [Frugalware-security] [ FSA-556 ] cups
Message-ID: <20081125235122.9B985119019C@genesis.frugalware.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Frugalware Security Advisory                           FSA-556

Date: 2008-11-26
Package: cups
Vulnerable versions: <= 1.3.8-1
Unaffected versions: >= 1.3.9-1solaria1
Related bugreport: http://bugs.frugalware.org/task/3400
CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3639
			http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3640
			http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3641

Description
===========

Some vulnerabilities have been reported in CUPS, which potentially can be exploited by malicious people to compromise a vulnerable system.
1) Two boundary errors exist in the implementation of the HP-GL/2 filter. These can be exploited to cause buffer overflows via HP-GL/2 files containing overly large pen numbers.
2) A boundary error exists within the "read_rle16()" function when processing SGI (Silicon Graphics Image) files. This can be exploited to cause a heap-based buffer overflow via a specially crafted SGI file.
3) An integer overflow error exists within the "WriteProlog()" function included in the "texttops" utility. This can be exploited to cause a heap-based buffer overflow via a specially crafted file.
Successful exploitation of the vulnerabilities may allow execution of arbitrary code.

Updated Packages
================

Check if you have cups installed:

	# pacman-g2 -Q cups

If found, then you should upgrade to the latest version:

	# pacman-g2 -Sy cups

Availability
============

The latest revision of this advisory is available at
http://frugalware.org/security/556

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: See http://ftp.frugalware.org/pub/README.GPG for info

iEYEARECAAYFAkksj3oACgkQZ7NElSD1VhnlAgCgkjrr3Jm6QHOUPUUq71bAtVU3
MmAAoIj/zMQgKnq4NlYB1CJzKscotiRn
=Szm5
-----END PGP SIGNATURE-----
From vmiklos at frugalware.org  Wed Nov 26 00:54:33 2008
From: vmiklos at frugalware.org (Miklos Vajna)
Date: Wed Nov 26 00:54:36 2008
Subject: [Frugalware-security] [ FSA-557 ] emacs
Message-ID: <20081125235433.B4466119019C@genesis.frugalware.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Frugalware Security Advisory                           FSA-557

Date: 2008-11-26
Package: emacs
Vulnerable versions: <= 22.2-4solaria1
Unaffected versions: >= 22.3-1solaria1
Related bugreport: http://bugs.frugalware.org/task/3397
CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3949

Description
===========

Emacs 22.1 and 22.2 imports Python script from the current working directory during editing of a Python file, which allows local users to execute arbitrary code via a Trojan horse Python file.

Updated Packages
================

Check if you have emacs installed:

	# pacman-g2 -Q emacs

If found, then you should upgrade to the latest version:

	# pacman-g2 -Sy emacs

Availability
============

The latest revision of this advisory is available at
http://frugalware.org/security/557

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: See http://ftp.frugalware.org/pub/README.GPG for info

iEYEARECAAYFAkkskDkACgkQZ7NElSD1Vhmg9gCfZlbNCpng+m1cOlxWz/tfl7XC
7YMAn1GVKg2ThIro6uEg2IeIGELR+Y3n
=jFPl
-----END PGP SIGNATURE-----