August 2007 - security [ARCHIVED] - Fedora Mailing-Lists

[Bug 243592] New: CVE-2007-3112, CVE-2007-3113: cacti DoS vulnerabilities

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=243592 Summary: CVE-2007-3112, CVE-2007-3113: cacti DoS vulnerabilities Product: Fedora Extras Version: f7 Platform: All OS/Version: Linux Status: NEW Severity: medium Priority: medium Component: cacti AssignedTo: mmcgrath(a)redhat.com ReportedBy: ville.skytta(a)iki.fi QAContact: extras-qa(a)fedoraproject.org CC: fedora-security-list(a)redhat.com http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-3112 "Cacti 0.8.6i, and possibly other versions, allows remote authenticated users to cause a denial of service (CPU consumption) via a large value of the (1) graph_start or (2) graph_end parameter." http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-3113 "Cacti 0.8.6i, and possibly other versions, allows remote authenticated users to cause a denial of service (CPU consumption) via a large value of the (1) graph_height or (2) graph_width parameter." The patch linked to in the reports applies to 0.8.6j too. -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.

16 years, 7 months

1
6
0 / 0

[Bug 240396] New: CVE-2007-2654: xfsdump file permissions issue

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=240396 Summary: CVE-2007-2654: xfsdump file permissions issue Product: Fedora Extras Version: fc6 Platform: All OS/Version: Linux Status: NEW Severity: medium Priority: medium Component: xfsdump AssignedTo: cattelan(a)redhat.com ReportedBy: ville.skytta(a)iki.fi QAContact: extras-qa(a)fedoraproject.org CC: fedora-security-list(a)redhat.com http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2654 "xfs_fsr in xfsdump creates a temporary directory with insecure permissions, which allows local users to read or overwrite arbitrary files on xfs filesystems." Patch from SUSE update attached. ------- Additional Comments From ville.skytta(a)iki.fi 2007-05-17 03:49 EST ------- Created an attachment (id=154896) --> (https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=154896&action=view) Patch from SUSE update -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.

16 years, 7 months

1
4
0 / 0

[Bug 235013] New: CVE-2007-1804: pulseaudio 0.9.5 DoS

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=235013 Summary: CVE-2007-1804: pulseaudio 0.9.5 DoS Product: Fedora Extras Version: fc6 Platform: All OS/Version: Linux Status: NEW Severity: medium Priority: medium Component: pulseaudio AssignedTo: drzeus-bugzilla(a)drzeus.cx ReportedBy: ville.skytta(a)iki.fi QAContact: extras-qa(a)fedoraproject.org CC: fedora-security-list(a)redhat.com http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-1804 "PulseAudio 0.9.5 allows remote attackers to cause a denial of service (daemon crash) via (1) a PA_PSTREAM_DESCRIPTOR_LENGTH value of FRAME_SIZE_MAX_ALLOW sent on TCP port 9875, which triggers a p->export assertion failure in do_read; (2) a PA_PSTREAM_DESCRIPTOR_LENGTH value of 0 sent on TCP port 9875, which triggers a length assertion failure in pa_memblock_new; or (3) an empty packet on UDP port 9875, which triggers a t assertion failure in pa_sdp_parse; and allows remote authenticated users to cause a denial of service (daemon crash) via a crafted packet on TCP port 9875 that (4) triggers a maxlength assertion failure in pa_memblockq_new, (5) triggers a size assertion failure in pa_xmalloc, or (6) plays a certain sound file." FC5, FC6, devel have 0.9.5 at the moment. -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.

16 years, 7 months

1
4
0 / 0

fedora-security/audit fc7,1.86,1.87

by fedora-extras-commits＠redhat.com

Author: lkundrak Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv16753 Modified Files: fc7 Log Message: mapserver Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.86 retrieving revision 1.87 diff -u -r1.86 -r1.87 --- fc7 30 Aug 2007 19:09:11 -0000 1.86 +++ fc7 31 Aug 2007 16:23:03 -0000 1.87 @@ -8,6 +8,7 @@ # Up to date CVE as of CVE email 20070823 # Up to date FC7 as of 20070827 +CVE-2007-4629 VULNERABLE (mapserver, fixed 4.10.3) #272081 GENERIC-MAP-NOMATCH VULNERABLE (qgit) #268381 CVE-2007-4565 VULNERABLE (fetchmail) #260861 CVE-2007-4560 VULNERABLE (clamav) #260583 -- fedora-extras-commits mailing list fedora-extras-commits(a)redhat.com https://www.redhat.com/mailman/listinfo/fedora-extras-commits

16 years, 8 months

1
0
0 / 0

Fedora 8 security flaws in Bugzilla

by Lubomir Kundrak

Hi all, When Fedora 8 is out, the number of issues that affect two supported Fedora releases will raise. Currently issues are usually either common for Fedora Core 6 and some releases RHEL, (where the package is typically owned by a Red Hat employee who has to care about fixing the bug in supported products) or specific to what used to be Fedora Extras and Fedora 7. Traditionally, I did not use to care about Extras, but situation changed when Fedora 7 was out with Extras merged in. With Fedora 8 most issues will affect two Fedora releases and I am curious how are we going to track the issues in Bugzilla, and how will Bodhi -- the update system deal with it. 1.) We could clone bug for each supported release. This would be a bit impractical, because of redundant information and comments that would go to two different places. But this will play nicely with Bodhi and references in the update mails. 2.) We could file a bug in the Security Response product and create private tracking bugs. For Bodhi to be happy we would reference both parent bug and tracking bugs. Downside would be that developer would be confused with three bugs filed for one issue. Maybe the Description in the tracking bug would clarify this to him. 3.) Create a bug for Fedora devel and then use flags to denote which releases need fixing and/or were fixed; Maybe something like fc7-fixed, fc8-fixed with values like " " = don't know if is affected, "-" = doesn't need fixing, "?" = need fixing, "+" fixed. Bodhi could be made to respect the flags and only close the bugs if nothing = "?". Downside would be assignee -- packages don't have to be owned by the same owner in all branches. Or are we going to handle that in another way? SFM? Cheers, -- Lubomir Kundrak (Security Response Team) Red Hat Czech s.r.o., Purkynova 99/71, 612 45 Brno, Czech Republic Registered in Brno under #CZ27690016

16 years, 8 months

5
8
0 / 0

[Bug 192830] New: CVE-2006-2453 Additional dia format string flaws

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=192830 Summary: CVE-2006-2453 Additional dia format string flaws Product: Fedora Extras Version: fc5 Platform: All OS/Version: Linux Status: NEW Severity: normal Priority: normal Component: dia AssignedTo: j.w.r.degoede(a)hhs.nl ReportedBy: bressers(a)redhat.com QAContact: extras-qa(a)fedoraproject.org CC: extras-qa(a)fedoraproject.org,fedora-security- list(a)redhat.com A number of additional format string issues were discovered by Hans de Goede and has been assigned the CVE id CVE-2006-2453. The fix is attachment 129852 -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.

16 years, 8 months

1
13
0 / 0

[Bug 215136] New: CVE-2006-5864: gv <= 3.6.2 stack-based buffer overflow

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=215136 Summary: CVE-2006-5864: gv <= 3.6.2 stack-based buffer overflow Product: Fedora Extras Version: fc6 Platform: All URL: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5864 OS/Version: Linux Status: NEW Severity: normal Priority: normal Component: gv AssignedTo: orion(a)cora.nwra.com ReportedBy: ville.skytta(a)iki.fi QAContact: extras-qa(a)fedoraproject.org CC: extras-qa(a)fedoraproject.org,fedora-security- list(a)redhat.com http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5864 "Stack-based buffer overflow in the ps_gettext function in ps.c for GNU gv 3.6.2, and possibly earlier versions, allows user-assisted attackers to execute arbitrary code via a PostScript (PS) file with certain headers that contain long comments, as demonstrated using the DocumentMedia header." -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.

16 years, 8 months

1
5
0 / 0

fedora-security/audit fc7,1.85,1.86

by fedora-extras-commits＠redhat.com

Author: lkundrak Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv1977 Modified Files: fc7 Log Message: gqit Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.85 retrieving revision 1.86 diff -u -r1.85 -r1.86 --- fc7 28 Aug 2007 16:48:30 -0000 1.85 +++ fc7 30 Aug 2007 19:09:11 -0000 1.86 @@ -8,6 +8,7 @@ # Up to date CVE as of CVE email 20070823 # Up to date FC7 as of 20070827 +GENERIC-MAP-NOMATCH VULNERABLE (qgit) #268381 CVE-2007-4565 VULNERABLE (fetchmail) #260861 CVE-2007-4560 VULNERABLE (clamav) #260583 CVE-2007-4559 VULNERABLE (python) tarfile module - directory traversal -- fedora-extras-commits mailing list fedora-extras-commits(a)redhat.com https://www.redhat.com/mailman/listinfo/fedora-extras-commits

16 years, 8 months

1
0
0 / 0

epel security

by Kevin Fenzi

Would it be possible and/or advisable for us to add some audit files for epel? EPEL has quite a few less packages than Fedora does, but we still need a way to track security issues, etc. If they are all in the same place then we can update them at the same time that Fedora releases audit files are updated. Thoughts? Concerns? Shall I just make them? kevin

16 years, 8 months

2
2
0 / 0

fedora-security/audit fc7,1.84,1.85

by fedora-extras-commits＠redhat.com

Author: kevin Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv16253 Modified Files: fc7 Log Message: Add star fixed cve Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.84 retrieving revision 1.85 diff -u -r1.84 -r1.85 --- fc7 28 Aug 2007 16:44:20 -0000 1.84 +++ fc7 28 Aug 2007 16:48:30 -0000 1.85 @@ -11,6 +11,7 @@ CVE-2007-4565 VULNERABLE (fetchmail) #260861 CVE-2007-4560 VULNERABLE (clamav) #260583 CVE-2007-4559 VULNERABLE (python) tarfile module - directory traversal +CVE-2007-4558 version (star, fixed 1.5a84) [since FEDORA-2007-1852] CVE-2007-4543 version (bugzilla, fixed 3.0.1) #256021 [since FEDORA-2007-1853] CVE-2007-4542 VULNERABLE (mapserver, fixed 4.10.3) #256561 CVE-2007-4539 version (bugzilla, fixed 3.0.1) #256021 [since FEDORA-2007-1853] -- fedora-extras-commits mailing list fedora-extras-commits(a)redhat.com https://www.redhat.com/mailman/listinfo/fedora-extras-commits

16 years, 8 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

security [ARCHIVED] August 2007