Gentoo Archives: gentoo-announce

From: Tobias Heinlein <keytoaster@g.o>
To: gentoo-announce@g.o
Cc: bugtraq@×××××××××××××.com, full-disclosure@××××××××××××××.uk, security-alerts@×××××××××××××.com
Subject: [gentoo-announce] [ GLSA 200805-21 ] Roundup: Permission bypass
Date: Tue, 27 May 2008 21:36:29
Message-Id: 483C73A8.9070909@gentoo.org
1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2 Gentoo Linux Security Advisory GLSA 200805-21
3 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
4 http://security.gentoo.org/
5 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
6
7 Severity: Normal
8 Title: Roundup: Permission bypass
9 Date: May 27, 2008
10 Bugs: #212488, #214666
11 ID: 200805-21
12
13 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
14
15 Synopsis
16 ========
17
18 A vulnerability in Roundup allows for bypassing permission
19 restrictions.
20
21 Background
22 ==========
23
24 Roundup is an issue-tracking system with command-line, web and e-mail
25 interfaces.
26
27 Affected packages
28 =================
29
30 -------------------------------------------------------------------
31 Package / Vulnerable / Unaffected
32 -------------------------------------------------------------------
33 1 www-apps/roundup < 1.4.4-r1 >= 1.4.4-r1
34
35 Description
36 ===========
37
38 Philipp Gortan reported that the xml-rpc server in Roundup does not
39 check property permissions (CVE-2008-1475). Furthermore, Roland Meister
40 discovered multiple vulnerabilities caused by unspecified errors, some
41 of which may be related to cross-site scripting (CVE-2008-1474).
42
43 Impact
44 ======
45
46 A remote attacker could possibly exploit the first vulnerability to
47 edit or view restricted properties via the list(), display(), and set()
48 methods. The impact and attack vectors of the second vulnerability are
49 unknown.
50
51 Workaround
52 ==========
53
54 There is no known workaround at this time.
55
56 Resolution
57 ==========
58
59 All Roundup users should upgrade to the latest version:
60
61 # emerge --sync
62 # emerge --ask --oneshot --verbose ">=www-apps/roundup-1.4.4-r1"
63
64 References
65 ==========
66
67 [ 1 ] CVE-2008-1474
68 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1474
69 [ 2 ] CVE-2008-1475
70 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1475
71
72 Availability
73 ============
74
75 This GLSA and any updates to it are available for viewing at
76 the Gentoo Security Website:
77
78 http://security.gentoo.org/glsa/glsa-200805-21.xml
79
80 Concerns?
81 =========
82
83 Security is a primary focus of Gentoo Linux and ensuring the
84 confidentiality and security of our users machines is of utmost
85 importance to us. Any security concerns should be addressed to
86 security@g.o or alternatively, you may file a bug at
87 http://bugs.gentoo.org.
88
89 License
90 =======
91
92 Copyright 2008 Gentoo Foundation, Inc; referenced text
93 belongs to its owner(s).
94
95 The contents of this document are licensed under the
96 Creative Commons - Attribution / Share Alike license.
97
98 http://creativecommons.org/licenses/by-sa/2.5

Attachments

File name MIME type
signature.asc application/pgp-signature