From vmiklos at frugalware.org Sun Feb 6 22:50:44 2011 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun, 6 Feb 2011 22:50:44 +0100 (CET) Subject: [Frugalware-security] [ FSA-703 ] wordpress Message-ID: <20110206215044.74E4E132C3A1@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-703 Date: 2011-02-06 Package: wordpress Vulnerable versions: <= 3.0.2-1haven1 Unaffected versions: >= 3.0.3-1haven1 Related bugreport: http://bugs.frugalware.org/task/4387 CVE: No CVE references, see http://wordpress.org/news/2010/12/wordpress-3-0-3/ Description =========== A security issue has been reported in WordPress, which can be exploited by malicious users to bypass certain security restrictions. The security issue is caused due to the XML-RPC remote publishing interface not properly enforcing access control restrictions for editing, publishing, or deleting posts. Successful exploitation of this security issue requires "Author level" or "Contributor level" permissions and that remote publishing is enabled. Updated Packages ================ Check if you have wordpress installed: # pacman-g2 -Q wordpress If found, then you should upgrade to the latest version: # pacman-g2 -Sy wordpress Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/703 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAk1PF7QACgkQZ7NElSD1VhlAYwCfSzPD5cEbbxKL6LDwrn4xjYro 0mEAn2G0y6Svc1VfnAxCu8dv6F4SpqPf =8Ztp -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Feb 6 22:53:38 2011 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun, 6 Feb 2011 22:53:38 +0100 (CET) Subject: [Frugalware-security] [ FSA-704 ] mantis Message-ID: <20110206215338.F24AA132C39E@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-704 Date: 2011-02-06 Package: mantis Vulnerable versions: <= 1.2.3-1haven1 Unaffected versions: >= 1.2.4-1haven1 Related bugreport: http://bugs.frugalware.org/task/4389 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4348 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4349 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4350 Description =========== Gjoko Krstic has reported some vulnerabilities in MantisBT, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose sensitive information. 1) Input passed via the "db_type" parameter to admin/upgrade_unattended.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. 2) Input passed via the "db_type" parameter to admin/upgrade_unattended.php is not properly verified before being used to include files. This can be exploited to include arbitrary file from local resources via directory traversal sequences and URL-encoded NULL bytes. NOTE: Successful exploitation requires that installation best-practices have not been followed and the "admin" directory has not been deleted after a successful installation. Updated Packages ================ Check if you have mantis installed: # pacman-g2 -Q mantis If found, then you should upgrade to the latest version: # pacman-g2 -Sy mantis Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/704 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAk1PGGIACgkQZ7NElSD1Vhm0mACggfJGXSJCufeszsytiO+f+dwR 4pwAoKKheKPsUGFFnxLfa7DHXPsQRI+I =7V4y -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Feb 6 23:08:09 2011 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun, 6 Feb 2011 23:08:09 +0100 (CET) Subject: [Frugalware-security] [ FSA-705 ] drupal6-views Message-ID: <20110206220809.72EFD132C39F@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-705 Date: 2011-02-06 Package: drupal6-views Vulnerable versions: <= 6.x_2.11-1 Unaffected versions: >= 6.x_2.12-1haven1 Related bugreport: http://bugs.frugalware.org/task/4390 CVE: No CVE references, see http://drupal.org/node/999380. Description =========== Multiple vulnerabilities have been reported in the Views module for Drupal, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via the URL is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. Updated Packages ================ Check if you have drupal6-views installed: # pacman-g2 -Q drupal6-views If found, then you should upgrade to the latest version: # pacman-g2 -Sy drupal6-views Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/705 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAk1PG8kACgkQZ7NElSD1VhlYeACghkkdI/KoUpp8FIp+asnEQlrn Qj4Ani0pBwZ2vdnyzzondY+F8VQKmp6P =XiXy -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Feb 6 23:13:20 2011 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun, 6 Feb 2011 23:13:20 +0100 (CET) Subject: [Frugalware-security] [ FSA-706 ] drupal-image Message-ID: <20110206221320.B9393132C39E@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-706 Date: 2011-02-06 Package: drupal-image Vulnerable versions: <= 5.x_1.9-1 Unaffected versions: >= 5.x_2.0-1haven1 Related bugreport: http://bugs.frugalware.org/task/4395 CVE: No CVE references, see http://drupal.org/node/1005578 Description =========== A vulnerability has been reported in the Image module for Drupal, which can be exploited by malicious users to conduct script insertion attacks. Certain unspecified input is not properly sanitised before being displayed to the user. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in the context of an affected site when the malicious data is being viewed. Updated Packages ================ Check if you have drupal-image installed: # pacman-g2 -Q drupal-image If found, then you should upgrade to the latest version: # pacman-g2 -Sy drupal-image Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/706 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAk1PHQAACgkQZ7NElSD1VhmGHgCfeVLLDI2TIJbQ2YZfgGy6xgc8 B0YAnAyvZ9M66tnPh7XjJ0JAM5cwrA4B =lDxU -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Feb 6 23:16:41 2011 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun, 6 Feb 2011 23:16:41 +0100 (CET) Subject: [Frugalware-security] [ FSA-707 ] drupal6-image Message-ID: <20110206221641.72552132C3A0@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-707 Date: 2011-02-06 Package: drupal6-image Vulnerable versions: <= 6.x_1.0_alpha4-1 Unaffected versions: >= 6.x_1.1-1haven1 Related bugreport: http://bugs.frugalware.org/task/4396 CVE: No CVE references, see http://drupal.org/node/1005578 Description =========== See FSA706. Updated Packages ================ Check if you have drupal6-image installed: # pacman-g2 -Q drupal6-image If found, then you should upgrade to the latest version: # pacman-g2 -Sy drupal6-image Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/707 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAk1PHckACgkQZ7NElSD1VhkIOACgl/nxMrg5f+aEDSK1Ztq4HSjs IIMAn3ALhhZbc5msz9sGznrlPRPwn2vm =wMpR -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Feb 6 23:41:51 2011 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun, 6 Feb 2011 23:41:51 +0100 (CET) Subject: [Frugalware-security] [ FSA-708 ] wordpress Message-ID: <20110206224151.AA293132C3A0@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-708 Date: 2011-02-06 Package: wordpress Vulnerable versions: <= 3.0.3-1haven1 Unaffected versions: >= 3.0.4-1haven1 Related bugreport: http://bugs.frugalware.org/task/4399 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4536 Description =========== A vulnerability has been reported in WordPress, which can be exploited by malicious users to conduct script insertion attacks. Certain input containing protocol strings (e.g. the HREF attribute of the "A" HTML tag) is not properly sanitised in the KSES library before being used. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in the context of an affected site when the malicious data is being viewed. Updated Packages ================ Check if you have wordpress installed: # pacman-g2 -Q wordpress If found, then you should upgrade to the latest version: # pacman-g2 -Sy wordpress Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/708 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAk1PI64ACgkQZ7NElSD1VhmcOQCfVh7G1YyUD2gqon26L//hFK5+ NH0AoIWJx7MAV55pEemdxpWTOgC2D86Z =rlCp -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Feb 6 23:47:14 2011 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun, 6 Feb 2011 23:47:14 +0100 (CET) Subject: [Frugalware-security] [ FSA-709 ] horde-webmail Message-ID: <20110206224714.0D3A5132C3A0@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-709 Date: 2011-02-06 Package: horde-webmail Vulnerable versions: <= 1.2.4-1 Unaffected versions: >= 1.2.9-1haven1 Related bugreport: http://bugs.frugalware.org/task/4408 CVE: No CVE references, see http://lists.horde.org/archives/announce/2010/000574.html Description =========== A vulnerability has been reported in various Horde products, which can be exploited by malicious people to conduct script insertion attacks. Certain unspecified input is not properly sanitised before being displayed to the user while viewing a vCard. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious vCard is being viewed. Updated Packages ================ Check if you have horde-webmail installed: # pacman-g2 -Q horde-webmail If found, then you should upgrade to the latest version: # pacman-g2 -Sy horde-webmail Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/709 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAk1PJPIACgkQZ7NElSD1VhmGBACfTYnRkul2sfNwaDY0A1arHStI q6QAniLZPw8JTsO6j7VvaB9XRSFsj9oU =e2oB -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Feb 6 23:54:08 2011 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun, 6 Feb 2011 23:54:08 +0100 (CET) Subject: [Frugalware-security] [ FSA-710 ] wireshark Message-ID: <20110206225408.7A3EC132C39E@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-710 Date: 2011-02-06 Package: wireshark Vulnerable versions: <= 1.4.2-1haven1 Unaffected versions: >= 1.4.3-1haven1 Related bugreport: http://bugs.frugalware.org/task/4410 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4538 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0444 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0445 Description =========== Multiple vulnerabilities have been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. 1) A boundary error in the "dissect_enttec_dmx_data()" function (epan/dissectors/packet-enttec.c) when processing RLE Compressed DMX data of the ENTTEC protocol can be exploited to cause a buffer overflow via a specially crafted packet sent to UDP port 3333. 2) A boundary error in the MAC-LTE dissector (epan/dissectors/packet-mac-lte.c) can be exploited to cause a stack-based buffer overflow. 3) A boundary error in the "snmp_usm_password_to_key_sha1()" function (asn1/snmp/packet-snmp-template.c) can be exploited to cause a stack-based buffer overflow. Successful exploitation of vulnerabilities #1, #2, and #3 may allow execution of arbitrary code. 4) An error in the ASN.1 BER dissector can be exploited to corrupt memory and cause the process to terminate. Updated Packages ================ Check if you have wireshark installed: # pacman-g2 -Q wireshark If found, then you should upgrade to the latest version: # pacman-g2 -Sy wireshark Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/710 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAk1PJpAACgkQZ7NElSD1Vhm5rgCbB0DzaN8D5Y5U15B1xGhUpv+W 5a0AniM5iNHhfYrtGo0ko9BO/UNshYLF =3sWh -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Feb 13 11:17:16 2011 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun, 13 Feb 2011 11:17:16 +0100 (CET) Subject: [Frugalware-security] [ FSA-711 ] drupal6-mollom Message-ID: <20110213101716.9626C132C39E@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-711 Date: 2011-02-13 Package: drupal6-mollom Vulnerable versions: <= 6.x_1.13-1 Unaffected versions: >= 6.x_1.14-1haven1 Related bugreport: http://bugs.frugalware.org/task/4321 CVE: No CVE references, see http://drupal.org/node/912412 Description =========== A security issue has been reported in the Mollom module for Drupal, which may lead to exposure of sensitive information. The security issue is caused due to an error in the module which can lead to certain sensitive user data e.g. a user's password in clear text being logged via calls to Drupal's watchdog API. Successful exploitation requires that an attacker has "access site reports" permissions or has access to system syslog files. Updated Packages ================ Check if you have drupal6-mollom installed: # pacman-g2 -Q drupal6-mollom If found, then you should upgrade to the latest version: # pacman-g2 -Sy drupal6-mollom Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/711 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAk1Xr6wACgkQZ7NElSD1Vhnu+wCfYu8fYLbkFrnNSlyESztBrueE bzwAoI8Fenf8RNvOHC3j/G1jVmh73Y2p =Q6i/ -----END PGP SIGNATURE----- From vmiklos at frugalware.org Sun Feb 13 11:21:54 2011 From: vmiklos at frugalware.org (Miklos Vajna) Date: Sun, 13 Feb 2011 11:21:54 +0100 (CET) Subject: [Frugalware-security] [ FSA-712 ] opera Message-ID: <20110213102154.0B874132C39E@genesis.frugalware.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Frugalware Security Advisory FSA-712 Date: 2011-02-13 Package: opera Vulnerable versions: <= 10.10-1 Unaffected versions: >= 11.01-1haven1 Related bugreport: http://bugs.frugalware.org/task/4417 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0450 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0681 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0682 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0683 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0684 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0685 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0686 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0687 Description =========== Two weaknesses and some vulnerabilities have been reported in Opera, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, and compromise a user's system. 1) An integer truncation error when processing certain specially crafted HTML pages can be exploited by e.g. tricking a user into visiting a malicious website. 2) The application allows users to perform certain actions via "opera:" URLs. This can be exploited to e.g. change certain configuration settings by tricking a user into clicking a specially crafted link via clickjacking. 3) An error when processing certain HTTP responses or redirects can be exploited to bypass certain security restrictions and e.g. disclose the content of local files by loading them as a web resource. 4) An error can cause Opera to launch the wrong executable in order to open a folder containing a downloaded file, which can lead to a malicious executable being launched. Successful exploitation of this weakness requires significant user interaction and only affects the Windows platform. 5) The "Clear all email account passwords" option does not clear the email passwords unless the application is restarted, which can be exploited to gain access to the email accounts. Updated Packages ================ Check if you have opera installed: # pacman-g2 -Q opera If found, then you should upgrade to the latest version: # pacman-g2 -Sy opera Availability ============ The latest revision of this advisory is available at http://frugalware.org/security/712 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: See http://ftp.frugalware.org/pub/README.GPG for info iEYEARECAAYFAk1XsMIACgkQZ7NElSD1VhlD8gCbBrayqpYyTtX7yHIzEWah5AzW xHgAoJBJLYrZ9+l2y6lRoAwfS/rRcRTI =Q//f -----END PGP SIGNATURE-----