Frugalware Security Announcements (FSAs)

Author: kikadf Vulnerable: 3.12.11-1 Unaffected: 3.12.11-2arcturus1 Multiple vulnerabilities have been found in the HP Linux Printing and Imaging System: Insecure temporary files, insufficient permission checks in PackageKit and the insecure hp-upgrade service has been disabled. CVEs: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4267 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4325 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6402 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6427

Author: kikadf Vulnerable: 9.9.2-2 Unaffected: 9.9.4-1arcturus1 libdns allows remote attackers to cause a denial of service (memory consumption) via a crafted regular expression, as demonstrated by a memory-exhaustion attack against a machine running a named process. Maxim Shudrak and the HP Zero Day Initiative reported a denial of service vulnerability in BIND, a DNS server. A specially crafted query that includes malformed rdata can cause named daemon to terminate with an assertion failure while rejecting the malformed query.

Author: kikadf Vulnerable: 1.4.15-1 Unaffected: 1.4.15-2arcturus1 It was reported that SASL authentication could be bypassed due to a flaw related to the managment of the SASL authentication state. With a specially crafted request, a remote attacker may be able to authenticate with invalid SASL credentials. CVEs: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7239

Author: kikadf Vulnerable: 1.0.1-4 Unaffected: 1.0.1-5arcturus1 Anton Johansson discovered that an invalid TLS handshake package could crash OpenSSL with a NULL pointer dereference. Multiple security issues have been fixed in OpenSSL: The TLS 1.2 support was susceptible to denial of service and retransmission of DTLS messages was fixed. In addition this update disables the insecure Dual_EC_DRBG algorithm and no longer uses the RdRand feature available on some Intel CPUs as a sole source of entropy unless explicitly requested.

Author: kikadf Vulnerable: 0.12.2-1 Unaffected: 0.12.2-2arcturus1 David Gibson of Red Hat discovered that SPICE incorrectly handled certain network errors. A remote user able to initiate a SPICE connection to an application acting as a SPICE server could use this flaw to crash the application. CVEs: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4130

Author: kikadf Vulnerable: 1.4.5-1 Unaffected: 1.4.5-2arcturus2 It was discovered that a buffer overflow in the processing of Glyph Bitmap Distribution fonts (BDF) could result in the execution of arbitrary code. CVEs: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6462

Author: James Buren Vulnerable: 16.0.912.63-2 Unaffected: 17.0.963.47-fermus1 A security issue and a vulnerability have been reported in chromium-browser, which can be exploited by malicious people to manipulate certain data and bypass certain security restrictions. Integer overflow in libpng, as used in Google Chrome before 17.0.963.56, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an integer truncation. Bug Tracker URL: https://bugs.

Author: James Buren Vulnerable: 6.x_3.15-1 Unaffected: 6.x_3.17-fermus1 A security issue and a vulnerability have been reported in drupal6-webform, which can be exploited by malicious people to manipulate certain data and bypass certain security restrictions. Certain unspecified input is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user’s browser session in context of an affected site when the malicious data is being viewed.

Author: James Buren Vulnerable: 10.0-1 Unaffected: 10.0.2-fermus1 A security issue and a vulnerability have been reported in firefox, which can be exploited by malicious people to manipulate certain data and bypass certain security restrictions. Integer overflow in libpng, as used in Google Chrome before 17.0.963.56, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an integer truncation. Bug Tracker URL: https://bugs.

Author: James Buren Vulnerable: 11.1.102.55-1 Unaffected: 11.1.102.63-fermus1 A security issue and a vulnerability have been reported in flashplugin, which can be exploited by malicious people to manipulate certain data and bypass certain security restrictions. The Matrix3D component in Adobe Flash Player before 10.3.183.16 and 11.x before 11.1.102.63 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.7 on Android 2.x and 3.x; and before 11.1.115.7 on Android 4.x allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.