Frugalware Security Announcements (FSAs)

This is a list of security announcments that have been released for the current stable version of Frugalware

php

  • Author: kikadf
  • Vulnerable: 5.3.26-2arcturus3
  • Unaffected: 5.3.26-2arcturus4

Francisco Alonso of the Red Hat Security Response Team reported an incorrect boundary check in the cdf_read_short_sector() function. Francisco Alonso of the Red Hat Security Response Team discovered a flaw in the way the truncated pascal string size in the mconvert() function is computed. Francisco Alonso of the Red Hat Security Response Team reported an incorrect boundary check in the cdf_check_stream_offset() function. rancisco Alonso of the Red Hat Security Response Team reported an insufficient boundary check in the cdf_count_chain() function. Francisco Alonso of the Red Hat Security Response Team discovered an incorrect boundary check in the cdf_read_property_info() funtion. Stefan Esser discovered a type confusion issue affecting phpinfo(), which might allow an attacker to obtain sensitive information from process memory.

vlc

  • Author: kikadf
  • Vulnerable: 2.0.8-2
  • Unaffected: 2.0.8-3arcturus1

Multiple buffer overflows have been found in the VideoLAN media player. Processing malformed subtitles or movie files could lead to denial of service and potentially the execution of arbitrary code.

CVEs:

cacti

  • Author: kikadf
  • Vulnerable: 0.8.8b-1
  • Unaffected: 0.8.8b-2arcturus1

Multiple security issues (cross-site scripting, cross-site request forgery, SQL injections, missing input sanitising) have been found in Cacti, a web frontend for RRDTool.

CVEs:

dbus

  • Author: kikadf
  • Vulnerable: 1.6.8-9
  • Unaffected: 1.6.8-10arcturus1

Alban Crequy at Collabora Ltd. discovered that dbus-daemon sends an AccessDenied error to the service instead of a client when the client is prohibited from accessing the service. Alban Crequy at Collabora Ltd. discovered a bug in dbus-daemon’s support for file descriptor passing. Alban Crequy at Collabora Ltd. and Alejandro Martínez Suárez discovered that a malicious process could force services to be disconnected from the D-Bus system by causing dbus-daemon to attempt to forward invalid file descriptors to a victim process, leading to a denial of service.

thunderbird

  • Author: kikadf
  • Vulnerable: 24.4.0-1arcturus1
  • Unaffected: 24.6.0-1arcturus1

Multiple security issues have been found in the Mozilla Thunderbird mail and news client: multiple memory safety errors and buffer overflows may lead to the execution of arbitrary code or denial of service.

CVEs:

mediawiki

  • Author: kikadf
  • Vulnerable: 1.18.1-1
  • Unaffected: 1.19.16-1arcturus1

Omer Iqbal discovered that Mediawiki, a wiki engine, parses invalid usernames on Special:PasswordReset as wikitext when $wgRawHtml is enabled. On such wikis this allows an unauthenticated attacker to insert malicious JavaScript, a cross site scripting attack.

CVEs: