May 2006 - security [ARCHIVED] - Fedora Mailing-Lists

[Bug 192830] New: CVE-2006-2453 Additional dia format string flaws

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=192830 Summary: CVE-2006-2453 Additional dia format string flaws Product: Fedora Extras Version: fc5 Platform: All OS/Version: Linux Status: NEW Severity: normal Priority: normal Component: dia AssignedTo: j.w.r.degoede(a)hhs.nl ReportedBy: bressers(a)redhat.com QAContact: extras-qa(a)fedoraproject.org CC: extras-qa(a)fedoraproject.org,fedora-security- list(a)redhat.com A number of additional format string issues were discovered by Hans de Goede and has been assigned the CVE id CVE-2006-2453. The fix is attachment 129852 -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.

16 years, 7 months

1
13
0 / 0

[Bug 192990] New: CVE-2005-2295 - netpanzer server remote DOS

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=192990 Summary: CVE-2005-2295 - netpanzer server remote DOS Product: Fedora Extras Version: fc5 Platform: All URL: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2005-2295 OS/Version: Linux Status: NEW Severity: normal Priority: normal Component: netpanzer AssignedTo: hugo(a)devin.com.br ReportedBy: tibbs(a)math.uh.edu QAContact: extras-qa(a)fedoraproject.org CC: extras-qa(a)fedoraproject.org,fedora-security- list(a)redhat.com (from the CVE): NetPanzer 0.8 and earlier allows remote attackers to cause a denial of service (infinite loop) via a packet with a zero datablock size. It seems this has been fixed in upstream SVN, but no release has been made and unfortunately upstream webSVN seems not to be responding for me. -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.

17 years, 10 months

1
6
0 / 0

[Bug 192983] New: Remote termination security issue

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=192983 Summary: Remote termination security issue Product: Fedora Extras Version: fc5 Platform: All URL: http://www.securityfocus.com/archive/1/434908/30/0/threa ded OS/Version: Linux Status: NEW Severity: normal Priority: normal Component: netpanzer AssignedTo: hugo(a)devin.com.br ReportedBy: tibbs(a)math.uh.edu QAContact: extras-qa(a)fedoraproject.org CC: extras-qa(a)fedoraproject.org,fedora-security- list(a)redhat.com The netPanzer server is subject to a DOS; it can be made to crash remotely. Versions 0.8 and lower are vulnerable. http://www.securityfocus.com/archive/1/434908/30/0/threaded A CVE has not yet been assigned for this issue. -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.

17 years, 10 months

1
7
0 / 0

Public Announcment for Fedora Extras

by Thomas Chung

First of all, congratulations to those who made Fedora Extras Updates announcements possible to the public for the first time! [1] https://www.redhat.com/archives/fedora-package-announce/2006-May/msg00093... [2] https://www.redhat.com/archives/fedora-package-announce/2006-May/msg00094... [3] https://www.redhat.com/archives/fedora-package-announce/2006-May/msg00095... Now, we need a public announcement regarding our new effort. Could someone in this project make an official announcement on Fedora Extras Updates? This will be posted in Fedora Weekly News as well as Fedora Weekly Reports. ps. The tag in subject in [2] should be Fedora Extras *4* update: kphone-4.2-9.fc4 It's been corrected in Fedora News post. [4] [4] http://fedoranews.org/cms/node/942 Regards, -- Thomas Chung http://fedoraproject.org/wiki/ThomasChung

17 years, 10 months

6
9
0 / 0

(Small) software that needs code audit

by Hans de Goede

Hi, As some of you already know I'm a computer science teacher at a Dutch university. Currently I'm giving a course about security. For my next practical lesson I want my students todo an audit of a small piece of C-code. Nothing fancy really just looking for sprintf instead of snprintf, gets instead of fgets, etc. And formatstring vulnerabilities. Does anyone know of some (small!) piece of software in Fedora (Extras) that could benefit from this? And are there any other simple checks my students could do? Any findings will of course be published. Thanks & Regards, Hans

17 years, 10 months

3
2
0 / 0

[Bug 191095] multiple vulnerabilities in thttpds htpasswd utility

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: multiple vulnerabilities in thttpds htpasswd utility https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=191095 ------- Additional Comments From tibbs(a)math.uh.edu 2006-05-26 11:23 EST ------- Created an attachment (id=130028) --> (https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=130028&action=view) htpasswd.c from current Apache -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.

17 years, 11 months

1
0
0 / 0

[Bug 191095] multiple vulnerabilities in thttpds htpasswd utility

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: multiple vulnerabilities in thttpds htpasswd utility https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=191095 ------- Additional Comments From tibbs(a)math.uh.edu 2006-05-26 11:22 EST ------- I did some comparisons but the htpasswd.c in thttpd is so old that it doesn't resemble any of the code in the Apache versions I have around. There's one comment in the thttpd htpasswd.c that concerns me: /* Modified 29aug97 by Jef Poskanzer to accept new password on stdin, ** if stdin is a pipe or file. This is necessary for use from CGI. I don't know that the Apache htpasswd.c supports this; if not, it would have to be hacked back in. I'll attach the current Apache htpasswd.c. -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.

17 years, 11 months

1
0
0 / 0

[Bug 191095] multiple vulnerabilities in thttpds htpasswd utility

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: multiple vulnerabilities in thttpds htpasswd utility https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=191095 ------- Additional Comments From matthias(a)rpmforge.net 2006-05-26 10:57 EST ------- Yeah, I guess. Patch welcome if you want that done real quick :-) -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.

17 years, 11 months

1
0
0 / 0

Form of submitted security issues

by Jason L Tibbitts III

OK, I submitted a couple of security issues. Could someone comment on whether I followed the proper procedure, use the proper form for entries in the audit list, etc? Also, one of the bugs was noted as perhaps not being a security issue. I don't really want to be in the position of deciding what is and is not a security issue, but I'd like to know: is there agreement that I should not have entered one or both of those issues at all? - J<

17 years, 11 months

4
4
0 / 0

Dia format string vulnerabilities (correction)

by Hans de Goede

Hi all, I was a bit short on time when I mailed my previous mail on this, so I didn't test (I didn't even compile) the patch. It turns out my previous patch contained one cut and paste error causing compilation to fail. The attached patch fixes this and has been tested. Regards, Hans

17 years, 11 months

2
2
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

security [ARCHIVED] May 2006