Articles / Debian

All articles tagged with Debian

April 22, 2010 08:24 Debian: New apache2 packages fix several issues

0

Two issues have been found in the Apache HTTPD web server. mod_proxy_ajp would return the wrong status code if it encountered an error, causing a backend server to be put into an error state until the retry timeout expired. A remote attacker could send malicious requests to trigger this issue, resulting in denial of service. A flaw in the core subrequest process code was found, which could lead to a daemon crash (segfault) or disclosure of sensitive information if the headers of a subrequest were modified by modules such as mod_headers. Updated packages are available from security.debian.org.

April 22, 2010 08:23 Debian: New jasper packages fix denial of service

0

It was discovered that the JasPer JPEG-2000 runtime library allowed an attacker to create a crafted input file that could lead to denial of service and heap corruption. Updated packages are available from security.debian.org.

April 22, 2010 08:22 Debian: New kdm packages fix privilege escalation

0

Sebastian Krahmer discovered that a race condition in the KDE Desktop Environment’s KDM display manager, allow a local user to elevate privileges to root. Updated packages are available from security.debian.org.

April 22, 2010 08:21 Debian: New phpmyadmin packages fix several vulnerabilities

0

Several vulnerabilities have been discovered in phpMyAdmin, a tool to administer MySQL over the web. phpMyAdmin may create a temporary directory, if the configured directory does not exist yet, with insecure filesystem permissions. phpMyAdmin uses predictable filenames for temporary files, which may lead to a local denial of service attack or privilege escalation. The setup.php script shipped with phpMyAdmin may unserialize untrusted data, allowing for cross site request forgery. Updated packages are available from security.debian.org.

April 22, 2010 08:15 Debian: New ejabberd packages fix denial of service

0

It was discovered that in ejabberd, a distributed XMPP/Jabber server written in Erlang, a problem in ejabberd_c2s.erl allows remote authenticated users to cause a denial of service by sending a large number of c2s (client2server) messages; that triggers an overload of the queue, which in turn causes a crash of the ejabberd daemon. Updated packages are available from security.debian.org.

April 22, 2010 08:01 Debian: New libpng packages fix several vulnerabilities

0

Several vulnerabilities have been discovered in libpng, a library for reading and writing PNG files. libpng does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via “out-of-bounds pixels” in the file. libpng does not properly handle compressed ancillary-chunk data that has a disproportionately large uncompressed representation, which allows remote attackers to cause a denial of service (memory and CPU consumption, and application hang) via a crafted PNG file. Updated packages are available from security.debian.org.

April 22, 2010 08:00 Debian: New krb5 packages fix denial of service

0

Sol Jerome discovered that kadmind service in krb5, a system for authenticating users and services on a network, allows remote authenticated users to cause a denial of service (daemon crash) via a request from a kadmin client that sends an invalid API version number. Updated packages are available from security.debian.org.

April 08, 2010 13:24 Debian: New mahara packages fix sql injection

0

It was discovered that mahara, an electronic portfolio, weblog, and resume builder is not properly escaping input when generating a unique username based on a remote user name from a single sign-on application. An attacker can use this to compromise the mahara database via crafted user names. Updated packages are available from security.debian.org.

April 08, 2010 13:23 Debian: New imlib2 packages fix arbitrary code execution

0

It was discovered that imlib2, a library to load and process several image formats, did not properly process various image file types. Several heap and stack based buffer overflows - partly due to integer overflows - in the ARGB, BMP, JPEG, LBM, PNM, TGA and XPM loaders can lead to the execution of arbitrary code via crafted image files. Updated packages are available from security.debian.org.

April 08, 2010 13:20 Debian: New xpdf packages fix several vulnerabilities

0

Several vulnerabilities have been identified in xpdf, a suite of tools for viewing and converting Portable Document Format (PDF) files. Integer overflows might allow remote attackers to execute arbitrary code or an application crash. A NULL pointer dereference or heap-based buffer overflow in Splash::drawImage might allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code. Updated packages are available from security.debian.org.

April 08, 2010 13:19 Debian: New xulrunner packages fix several vulnerabilities

0

Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications, such as the Iceweasel web browser. Jesse Ruderman and Ehsan Akhgari discovered crashes in the layout engine, which might allow the execution of arbitrary code. It was discovered that incorrect memory handling in the XUL event handler might allow the execution of arbitrary code. Paul Stone discovered that forced drag-and-drop events could lead to Chrome privilege escalation. It was discovered that a programming error in the XMLHttpRequestSpy module could lead to the execution of arbitrary code. Updated packages are available from security.debian.org.

April 08, 2010 13:18 Debian: New netpbm-free packages fix denial of service

0

Marc Schoenefeld discovered a stack-based buffer overflow in the XPM reader implementation in netpbm-free, a suite of image manipulation utilities. An attacker could cause a denial of service (application crash) or possibly execute arbitrary code via an XPM image file that contains a crafted header field associated with a large color index value. Updated packages are available from security.debian.org.

April 01, 2010 15:44 Debian: New icedove packages fix several vulnerabilities

0

Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird mail client. Dan Kaminsky and Moxie Marlinspike discovered that icedove does not properly handle a ‘\0’ character in a domain name in the subject’s Common Name (CN) field of an X.509 certificate. Moxie Marlinspike reported a heap overflow vulnerability in the code that handles regular expressions in certificate names. monarch2020 discovered an integer overflow n a base64 decoding function. Josh Soref discovered a crash in the BinHex decoder. Carsten Book reported a crash in the JavaScript engine. Ludovic Hirlimann reported a crash indexing some messages with attachments, which could lead to the execution of arbitrary code. Updated packages are available from security.debian.org.

April 01, 2010 15:42 Debian: New moin packages fix cross-site scripting

0

Jamie Strandboge discovered that moin, a python clone of WikiWiki, does not sufficiently sanitize the page name in “Despam” action, allowing remote attackers to perform cross-site scripting (XSS) attacks. Updated packages are available from security.debian.org.

April 01, 2010 14:49 Debian: New curl packages fix arbitrary code execution

0

Wesley Miaw discovered that libcurl, a multi-protocol file transfer library, is prone to a buffer overflow via the callback function when an application relies on libcurl to automatically uncompress data. Note that this only affects applications that trust libcurl’s maximum limit for a fixed buffer size and do not perform any sanity checks themselves. Updated packages are available from security.debian.org.

March 24, 2010 09:04 Debian: New mediawiki packages fix several vulnerabilities

0

Several vulnerabilities have been discovered in mediawiki, a web-based wiki engine. Insufficient input sanitization in the CSS validation code allows editors to display external images in wiki pages. Insufficient permission checks have been found in thump.php which can lead to disclosure of image files that are restricted to certain users. Updated packages are available from security.debian.org.

March 24, 2010 09:00 Debian: New spamass-milter packages fix remote command ex...

0

It was discovered a missing input sanitization in spamass-milter, a milter used to filter mail through spamassassin. This allows a remote attacker to inject and execute arbitrary shell commands. Updated packages are available from security.debian.org.

March 24, 2010 08:59 Debian: New ikiwiki packages fix cross-site scripting

0

Ivan Shmakov discovered that the htmlscrubber component of ikwiki, a wiki compiler, performs insufficient input sanitization on data:image/svg+xml URIs. As these can contain script code this can be used by an attacker to conduct cross-site scripting attacks. Updated packages are available from security.debian.org.

March 24, 2010 08:58 Debian: New pango1.0 packages fix denial of service

0

Marc Schoenefeld discovered an improper input sanitization in Pango, a library for layout and rendering of text, leading to array indexing error. If a local user was tricked into loading a specially-crafted font file in an application, using the Pango font rendering library, it could lead to denial of service (application crash). Updated packages are available from security.debian.org.

March 24, 2010 08:57 Debian: New php5 packages fix null pointer dereference

0

Auke van Slooten discovered that PHP 5, an hypertext preprocessor, crashes (because of a NULL pointer dereference) when processing invalid XML-RPC requests. Updated packages are available from security.debian.org.

March 24, 2010 07:33 Debian: New drbd8 packages fix privilege escalation

0

A local vulnerability has been discovered in drbd8. Philipp Reisner fixed an issue in the drbd kernel module that allows local users to send netlink packets to perform actions that should be restricted to users with CAP_SYS_ADMIN privileges. Updated packages are available from security.debian.org.

March 24, 2010 07:23 Debian: New pulseaudio packages fix insecure temporary di...

0

Dan Rosenberg discovered that the PulseAudio sound server creates a temporary directory with a predictable name. This allows a local attacker to create a Denial of Service condition or possibly disclose sensitive information to unprivileged users. Updated packages are available from security.debian.org.

March 15, 2010 10:22 Debian: New drupal6 packages fix several vulnerabilities

0

Several vulnerabilities (SA-CORE-2010-001) have been discovered in drupal6, a fully-featured content management framework. A user-supplied value is directly output during installation allowing a malicious user to craft a URL and perform a cross-site scripting attack. The API function drupal_goto() is susceptible to a phishing attack. Locale module and dependent contributed modules do not sanitize the display of language codes, native and English language names properly. Under certain circumstances, a user with an open session that is blocked can maintain his/her session on the Drupal site, despite being blocked. Updated packages are available from security.debian.org.

March 15, 2010 10:21 Debian: New moin packages fix several vulnerabilities

0

Several vulnerabilities have been discovered in moin, a python clone of WikiWiki. Multiple security issues in MoinMoin related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured. MoinMoin does not properly sanitize user profiles. The default configuration of cfg.packagepages_actions_excluded in MoinMoin does not prevent unsafe package actions. Updated packages are available from security.debian.org.

March 15, 2010 10:19 Debian: New egroupware packages fix several vulnerabilities

0

Nahuel Grisolia discovered two vulnerabilities in Egroupware, a web-based groupware suite. Missing input sanitising in the spellchecker integration may lead to the execution of arbitrary commands and a cross-site scripting vulnerability was discovered in the login page. Updated packages are available from security.debian.org.

March 15, 2010 10:18 Debian: New Linux 2.6.26 packages fix several issues

0

Two vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. Philipp Reisner reported an issue in the connector subsystem which allows unprivileged users to send netlink packets. This allows local users to manipulate settings for uvesafb devices which are normally reserved for privileged users. Jermome Marchand reported an issue in the futex subsystem that allows a local user to force an invalid futex state which results in a denial of service (oops). Updated packages are available from security.debian.org.

March 15, 2010 10:17 Debian: New dpkg packages fix path traversal

0

William Grant discovered that the dpkg-source component of dpkg, the low-level infrastructure for handling the installation and removal of Debian software packages, is vulnerable to path traversal attacks. A specially crafted Debian source package can lead to file modification outside of the destination directory when extracting the package content. Updated packages are available from security.debian.org.

March 15, 2010 10:15 Debian: New kvm packages fix several vulnerabilities

0

Several local vulnerabilities have been discovered in kvm, a full virtualization system. Gleb Natapov discovered issues in the KVM subsystem where missing permission checks (CPL/IOPL) permit a user in a guest system to denial of service a guest (system crash) or gain escalated privileges with the guest. Marcelo Tosatti fixed an issue in the PIT emulation code in the KVM subsystem that allows privileged users in a guest domain to cause a denial of service (crash) of the host system. Paolo Bonzini found a bug in KVM that can be used to bypass proper permission checking while loading segment selectors. This potentially allows privileged guest users to execute privileged instructions on the host system. Updated packages are available from security.debian.org.

March 15, 2010 10:13 Debian: New tdiary packages fix cross-site scripting

0

It was discovered that tdiary, a communication-friendly weblog system, is prone to a cross-site scripting vulnerability due to insuficient input sanitising in the TrackBack transmission plugin. Updated packages are available from security.debian.org.

March 15, 2010 10:12 Debian: New typo3-src packages fix several vulnerabilities

0

Several remote vulnerabilities have been discovered in the TYPO3 web content management framework. Cross-site scripting vulnerabilities have been discovered in both the frontend and the backend. Also, user data could be leaked. Updated packages are available from security.debian.org.

Screenshot

Project Spotlight

JFreeSVG

A fast, lightweight SVG generator for Java.

Screenshot

Project Spotlight

PHP MIME Mail decoder class

A PHP class to decode email messages.