Heap overfolw hibát találtak a Hashcash hash cash generáló alkalmazásban, mely kihasználásával tetszőleges kód futtatható a hashcash-t futtató felhasználó jogaival. DoS sebezhetőséget találtak az EnergyMech IRC botban. Egy üres CTCP NOTICE küldésével a támadó segmentation fault-ot érhet el. Buffer overflow hibát találtak a Mutt levelező kliensben. Egy rosszindulatu IMAP szerver túlságosan hosszú namespace küldésével, a mutt összeomlasztását érheti el, vagy tetszőleges kódot futtathat a muttot futtató felhasználó jogaival. SQL injection és több XSS hibát találtak a Tikiwiki tartalom menedzser rendszerben. Tikiwiki nem képes megfelelően kitisztítani a felhasználói inputot, mielőtt futtatná azt, így a támadó tetszőleges SQL query-t futtathat, vagy tetszőleges scriptet fecskendezhet be a felhasználó browser-ének szövegkörnyezetébe. XSS hibát találtak a Horde Web Application Framework-ben, melynek kihasználásaval tetszőleges script futtatható a felhasználó browser-e álltal. Biztonsági hibát találtak a Kiax grafikus VoIP programban. A támadó egy fortélyos IAX2 csomag küldésével, tetszőleges kódot futtathat, a kompromittált gépen a Kiax alkalmazást futtató felhasználó jogaival. Heap overflow hibát találtak az mpg123 audio player-ben. A támadó egy rosszindulatú URL látogatására csábításával, tetszőleges kódot futtathat az mpg123-at futtató felhasználó jogaival. Több integer overflow-t találtak a FreeType font engine-ben. Egy rosszindulatú font betöltésével tetszőleges kód futtatható. Több buffer overflow hibát találtak a libTIFF függvénykönyvtárban. A rosszindulatú TIFF image betöltésével tetszőleges kód futtatható. SQL injection lehetőségét fedezték fel a PostgreSQL-ben. Multibyte karakterek kezelésének hibája tetszőleges SQL query futtatását teszi lehetővé. Több XSS sebezhetőséget találtak a SHOUTcast streaming audio serverben. Egy speciális GET kérés küldésével a támadó file-okat olvashat, amiket a SHOUTcast olvas. Ez tetszőleges script futtátásához vezethet a felhasználó browser-ének szövegkörnyezetében. Gentoo kiadta a frissítéseket.
--- Begin Message ---- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200606-25 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: Hashcash: Possible heap overflow Date: June 26, 2006 Bugs: #134960 ID: 200606-25 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== A heap overflow vulnerability in the Hashcash utility could allow an attacker to execute arbitrary code. Background ========== Hashcash is a utility for generating Hashcash tokens, a proof-of-work system to reduce the impact of spam. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-misc/hashcash < 1.21 >= 1.21 Description =========== Andreas Seltenreich has reported a possible heap overflow in the array_push() function in hashcash.c, as a result of an incorrect amount of allocated memory for the "ARRAY" structure. Impact ====== By sending malicious entries to the Hashcash utility, an attacker may be able to cause an overflow, potentially resulting in the execution of arbitrary code with the privileges of the user running the application. Workaround ========== There is no known workaround at this time. Resolution ========== All Hashcash users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/hashcash-1.21" References ========== [ 1 ] Hashcash ChangeLog http://www.hashcash.org/source/CHANGELOG Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200606-25.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5Attachment: signature.asc
Description: OpenPGP digital signature
--- End Message ---
--- Begin Message ---- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200606-26 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: EnergyMech: Denial of Service Date: June 26, 2006 Bugs: #132749 ID: 200606-26 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== A Denial of Service vulnerability was discovered in EnergyMech that is easily exploitable via IRC. Background ========== EnergyMech is an IRC bot programmed in C. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-irc/emech < 3.0.2 >= 3.0.2 Description =========== A bug in EnergyMech fails to handle empty CTCP NOTICEs correctly, and will cause a crash from a segmentation fault. Impact ====== By sending an empty CTCP NOTICE, a remote attacker could exploit this vulnerability to cause a Denial of Service. Workaround ========== There is no known workaround at this time. Resolution ========== All EnergyMech users should update to the latest stable version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-irc/emech-3.0.2" References ========== [ 1 ] EnergyMech Changelog http://www.energymech.net/versions-3.0.html Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200606-26.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5Attachment: signature.asc
Description: OpenPGP digital signature
--- End Message ---
--- Begin Message ---- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200606-27 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Mutt: Buffer overflow Date: June 28, 2006 Bugs: #138125 ID: 200606-27 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Mutt contains a buffer overflow that could result in arbitrary code execution. Background ========== Mutt is a small but very powerful text-based mail client. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 mail-client/mutt < 1.5.11-r2 >= 1.5.11-r2 Description =========== TAKAHASHI Tamotsu has discovered that Mutt contains a boundary error in the "browse_get_namespace()" function in browse.c, which can be triggered when receiving an overly long namespace from an IMAP server. Impact ====== A malicious IMAP server can send an overly long namespace to Mutt in order to crash the application, and possibly execute arbitrary code with the permissions of the user running Mutt. Workaround ========== There is no known workaround at this time. Resolution ========== All Mutt users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=mail-client/mutt-1.5.11-r2" References ========== [ 1 ] CVE-2006-3242 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3242 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200606-27.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5Attachment: pgpthxWpmkmG3.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200606-29 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Tikiwiki: SQL injection and multiple XSS vulnerabilities Date: June 29, 2006 Bugs: #136723, #134483 ID: 200606-29 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== An SQL injection vulnerability and multiple XSS vulnerabilities have been discovered. Background ========== Tikiwiki is a web-based groupware and content management system (CMS), using PHP, ADOdb and Smarty. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-apps/tikiwiki < 1.9.4 >= 1.9.4 Description =========== Tikiwiki fails to properly sanitize user input before processing it, including in SQL statements. Impact ====== An attacker could execute arbitrary SQL statements on the underlying database, or inject arbitrary scripts into the context of a user's browser. Workaround ========== There is no known workaround at this time. Resolution ========== All Tikiwiki users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=www-apps/tikiwiki-1.9.4" References ========== [ 1 ] CVE-2006-3048 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3048 [ 2 ] CVE-2006-3047 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3047 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200606-29.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5Attachment: pgpFjZENPyo5z.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200606-28 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Low Title: Horde Web Application Framework: XSS vulnerability Date: June 29, 2006 Bugs: #136830 ID: 200606-28 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== The Horde Web Application Framework is vulnerable to a cross-site scripting vulnerability. Background ========== The Horde Web Application Framework is a general-purpose web application framework written in PHP, providing classes for handling preferences, compression, browser detection, connection tracking, MIME, and more. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-apps/horde < 3.1.1-r1 >= 3.1.1-r1 Description =========== Michael Marek discovered that the Horde Web Application Framework performs insufficient input sanitizing. Impact ====== An attacker could exploit these vulnerabilities to execute arbitrary scripts running in the context of the victim's browser. Workaround ========== There is no known workaround at this time. Resolution ========== All horde users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=www-apps/horde-3.1.1-r1" References ========== [ 1 ] CVE-2006-2195 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2195 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200606-28.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5Attachment: pgpmNxb2ypuw3.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200606-30 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Kiax: Arbitrary code execution Date: June 30, 2006 Bugs: #136099 ID: 200606-30 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== A security vulnerability in the iaxclient library could lead to the execution of arbitrary code by a remote attacker. Background ========== Kiax is a graphical softphone supporting the IAX protocol (Inter Asterisk eXchange), which allows PC users to make VoIP calls to Asterisk servers. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-misc/kiax < 0.8.5_p1 >= 0.8.5_p1 Description =========== The iax_net_read function in the iaxclient library fails to properly handle IAX2 packets with truncated full frames or mini-frames. These frames are detected in a length check but processed anyway, leading to buffer overflows. Impact ====== By sending a specially crafted IAX2 packet, an attacker could execute arbitrary code with the permissions of the user running Kiax. Workaround ========== There is no known workaround at this time. Resolution ========== All Kiax users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/kiax-0.8.5_p1" References ========== [ 1 ] CVE-2006-2923 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2923 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200606-30.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5Attachment: pgpyTNgwPumhq.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200607-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: mpg123: Heap overflow Date: July 03, 2006 Bugs: #133988 ID: 200607-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== A heap overflow in mpg123 was discovered, which could result in the execution of arbitrary code. Background ========== mpg123 is a real time audio player designed for the MPEG format. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-sound/mpg123 < 0.59s-r11 >= 0.59s-r11 Description =========== In httpdget.c, a variable is assigned to the heap, and is supposed to receive a smaller allocation. As this variable was not terminated properly, strncpy() will overwrite the data assigned next in memory. Impact ====== By enticing a user to visit a malicious URL, an attacker could possibly execute arbitrary code with the rights of the user running mpg123. Workaround ========== There is no known workaround at this time. Resolution ========== All mpg123 users should update to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=media-sound/mpg123-0.59s-r11" Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200607-01.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5Attachment: pgpkU2g9JjxU0.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200607-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: FreeType: Multiple integer overflows Date: July 09, 2006 Bugs: #124828 ID: 200607-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple remotely exploitable buffer overflows have been discovered in FreeType, resulting in the execution of arbitrary code. Background ========== FreeType is a portable font engine. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-libs/freetype < 2.1.10-r2 >= 2.1.10-r2 Description =========== Multiple integer overflows exist in a variety of files (bdf/bdflib.c, sfnt/ttcmap.c, cff/cffgload.c, base/ftmac.c). Impact ====== A remote attacker could exploit these buffer overflows by enticing a user to load a specially crafted font, which could result in the execution of arbitrary code. Workaround ========== There is no known workaround at this time. Resolution ========== All FreeType users should upgrade to the latest stable version: # emerge --sync # emerge --ask --oneshot --verbose ">=media-libs/freetype-2.1.10-r2" References ========== [ 1 ] CVE-2006-1861 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1861 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200607-02.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5Attachment: pgpguyqMbFIiJ.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200607-03 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: libTIFF: Multiple buffer overflows Date: July 09, 2006 Bugs: #135881 ID: 200607-03 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== libTIFF contains buffer overflows that could result in arbitrary code execution. Background ========== libTIFF provides support for reading and manipulating TIFF images. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-libs/tiff < 3.8.2-r1 >= 3.8.2-r1 Description =========== A buffer overflow has been found in the t2p_write_pdf_string function in tiff2pdf, which can been triggered with a TIFF file containing a DocumentName tag with UTF-8 characters. An additional buffer overflow has been found in the handling of the parameters in tiffsplit. Impact ====== A remote attacker could entice a user to load a specially crafted TIFF file, resulting in the possible execution of arbitrary code. Workaround ========== There is no known workaround at this time. Resolution ========== All libTIFF users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=media-libs/tiff-3.8.2-r1" References ========== [ 1 ] CVE-2006-2193 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2193 [ 2 ] CVE-2006-2656 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2656 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200607-03.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5Attachment: pgplc9k4PzV9k.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200607-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: PostgreSQL: SQL injection Date: July 09, 2006 Bugs: #134168 ID: 200607-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== A flaw in the multibyte character handling allows execution of arbitrary SQL statements. Background ========== PostgreSQL is an open source object-relational database management system. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-db/postgresql < 8.0.8 >= 8.0.8 *>= 7.4.13 Description =========== PostgreSQL contains a flaw in the string parsing routines that allows certain backslash-escaped characters to be bypassed with some multibyte character encodings. This vulnerability was discovered by Akio Ishida and Yasuo Ohgaki. Impact ====== An attacker could execute arbitrary SQL statements on the PostgreSQL server. Be aware that web applications using PostgreSQL as a database back-end might be used to exploit this vulnerability. Workaround ========== There is no known workaround at this time. Resolution ========== All PostgreSQL users should upgrade to the latest version in the respective branch they are using: # emerge --sync # emerge --ask --oneshot --verbose dev-db/postgresql Note: While a fix exists for the 7.3 branch it doesn't currently work on Gentoo. All 7.3.x users of PostgreSQL should consider updating their installations to the 7.4 (or higher) branch as soon as possible! References ========== [ 1 ] PostgreSQL technical information http://www.postgresql.org/docs/techdocs.50 [ 2 ] CVE-2006-2313 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2313 [ 3 ] CVE-2006-2314 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2314 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200607-04.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5Attachment: pgpPTqrqXDPlw.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200607-05 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: SHOUTcast server: Multiple vulnerabilities Date: July 09, 2006 Bugs: #136721, #136221 ID: 200607-05 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== The SHOUTcast server is vulnerable to a file disclosure vulnerability and multiple XSS vulnerabilities. Background ========== SHOUTcast server is a streaming audio server. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-sound/shoutcast-server-bin < 1.9.7 >= 1.9.7 Description =========== The SHOUTcast server is vulnerable to a file disclosure when the server receives a specially crafted GET request. Furthermore it also fails to sanitize the input passed to the "Description", "URL", "Genre", "AIM", and "ICQ" fields. Impact ====== By sending a specially crafted GET request to the SHOUTcast server, the attacker can read any file that can be read by the SHOUTcast process. Furthermore it is possible that various request variables could also be exploited to execute arbitrary scripts in the context of a victim's browser. Workaround ========== There is no known workaround at this time. Resolution ========== All SHOUTcast server users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=media-sound/shoutcast-server-bin-1.9.7" References ========== [ 1 ] Original advisory http://people.ksp.sk/~goober/advisory/001-shoutcast.html [ 2 ] SA20524 http://secunia.com/advisories/20524/ Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200607-05.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5Attachment: pgpqcMSvPlo1m.pgp
Description: PGP signature
--- End Message ---