Frugalware Security Announcements (FSAs)

This is a list of security announcments that have been released for the current stable version of Frugalware

cups

Author: kikadf Vulnerable: 1.6.1-12 Unaffected: 1.6.1-13rigel1 Peter De Wachter discovered that CUPS, the Common UNIX Printing System, did not correctly parse compressed raster files. CVEs: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9679

freetype2

Author: kikadf Vulnerable: 2.4.11-1 Unaffected: 2.4.11-2rigel1 Mateusz Jurczyk discovered that FreeType did not correctly handle certain malformed font files. CVEs: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9656 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9657 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9658 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9660 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9661 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9663 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9664 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9666 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9667 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9669 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9670 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9671 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9672 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9673 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9674 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9675

sudo

Author: kikadf Vulnerable: 1.8.9-1 Unaffected: 1.8.12-1rigel2 Jakub Wilk reported that sudo, a program designed to provide limited super user privileges to specific users, preserves the TZ variable from a user’s environment without any sanitization. A user with sudo access may take advantage of this to exploit bugs in the C library functions which parse the TZ environment variable or to open files that the user would not otherwise be able to open.

unrtf

Author: kikadf Vulnerable: 0.21.5-1 Unaffected: 0.21.5-2rigel2 Michal Zalewski and Hanno Boeck discovered several vulnerabilities in unrtf, a RTF to other formats converter, leading to a denial of service (application crash) or, potentially, the execution of arbitrary code. CVEs: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9274 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9275

vlc

Author: kikadf Vulnerable: 2.0.9-5 Unaffected: 2.0.9-6rigel2 The MP4 demuxer, when parsing string boxes, did not properly check the length of the box, leading to a possible integer underflow when using this length value in a call to memcpy(). The MP4 demuxer, when parsing string boxes, did not properly check that the conversion of the box length from 64bit integer to 32bit integer on 32bit platforms did not cause a truncation, leading to a possible buffer overflow.

xorg-server

Author: kikadf Vulnerable: 1.15.2-2 Unaffected: 1.15.2-3rigel2 Olivier Fourdan discovered that missing input validation in the Xserver’s handling of XkbSetGeometry requests may result in an information leak or denial of service. CVEs: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0255

postgresql

Author: kikadf Vulnerable: 9.1.12-1 Unaffected: 9.1.15-1rigel2 A user with limited clearance on a table might have access to information in columns without SELECT rights on through server error messages. The function to_char() might read/write past the end of a buffer. This might crash the server when a formatting template is processed. The pgcrypto module is vulnerable to stack buffer overrun that might crash the server. Emil Lenngren reported that an attacker can inject SQL commands when the synchronization between client and server is lost.

binutils

Author: kikadf Vulnerable: 2.24-4 Unaffected: 2.24-5rigel1 Michal Zalewski discovered that the srec_scan function in libbfd in GNU binutils allowed out-of-bounds reads. Michal Zalewski discovered that the setup_group function in libbfd in GNU binutils did not properly check group headers in ELF files. Hanno Böck discovered that the _bfd_XXi_swap_aouthdr_in function in libbfd in GNU binutils allowed out-of-bounds writes. Hanno Böck discovered a heap-based buffer overflow in the pe_print_edata function in libbfd in GNU binutils.

clamav

Author: kikadf Vulnerable: 0.98.5-1 Unaffected: 0.98.6-1rigel1 Sebastian Andrzej Siewior discovered that ClamAV incorrectly handled certain upack packer files. CVEs: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9328

dbus

Author: kikadf Vulnerable: 1.8.2-4 Unaffected: 1.8.2-5rigel1 Simon McVittie discovered a local denial of service flaw in dbus, an asynchronous inter-process communication system. On systems with systemd-style service activation, dbus-daemon does not prevent forged ActivationFailure messages from non-root processes. CVEs: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0245