Gentoo Archives: gentoo-announce

From: Sune Kloppenborg Jeppesen <jaervosz@g.o>
To: gentoo-announce@l.g.o
Cc: bugtraq@×××××××××××××.com, full-disclosure@××××××××××××××.uk, security-alerts@×××××××××××××.com
Subject: [gentoo-announce] [ GLSA 200601-11 ] KDE kjs: URI heap overflow vulnerability
Date: Sun, 22 Jan 2006 12:50:05
Message-Id: 200601221328.25819.jaervosz@gentoo.org
1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2 Gentoo Linux Security Advisory GLSA 200601-11
3 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
4 http://security.gentoo.org/
5 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
6
7 Severity: Normal
8 Title: KDE kjs: URI heap overflow vulnerability
9 Date: January 22, 2006
10 Bugs: #118550
11 ID: 200601-11
12
13 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
14
15 Synopsis
16 ========
17
18 KDE fails to properly validate URIs when handling javascript,
19 potentially resulting in the execution of arbitrary code.
20
21 Background
22 ==========
23
24 KDE is a feature-rich graphical desktop environment for Linux and
25 Unix-like Operating Systems. kjs is the javascript interpreter used in
26 Konqueror and other parts of KDE.
27
28 Affected packages
29 =================
30
31 -------------------------------------------------------------------
32 Package / Vulnerable / Unaffected
33 -------------------------------------------------------------------
34 1 kde-base/kdelibs < 3.4.3-r1 >= 3.4.3-r1
35
36 Description
37 ===========
38
39 Maksim Orlovich discovered an incorrect bounds check in kjs when
40 handling URIs.
41
42 Impact
43 ======
44
45 By enticing a user to load a specially crafted webpage containing
46 malicious javascript, an attacker could execute arbitrary code with the
47 rights of the user running kjs.
48
49 Workaround
50 ==========
51
52 There is no known workaround at this time.
53
54 Resolution
55 ==========
56
57 All kdelibs users should upgrade to the latest version:
58
59 # emerge --sync
60 # emerge --ask --oneshot --verbose kde-base/kdelibs-3.4.3-r1
61
62 References
63 ==========
64
65 [ 1 ] CVE-2006-0019
66 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0019
67 [ 2 ] KDE Security Advisory: kjs encodeuri/decodeuri heap overflow vulnerability
68 http://www.kde.org/info/security/advisory-20060119-1.txt
69
70 Availability
71 ============
72
73 This GLSA and any updates to it are available for viewing at
74 the Gentoo Security Website:
75
76 http://security.gentoo.org/glsa/glsa-200601-11.xml
77
78 Concerns?
79 =========
80
81 Security is a primary focus of Gentoo Linux and ensuring the
82 confidentiality and security of our users machines is of utmost
83 importance to us. Any security concerns should be addressed to
84 security@g.o or alternatively, you may file a bug at
85 http://bugs.gentoo.org.
86
87 License
88 =======
89
90 Copyright 2006 Gentoo Foundation, Inc; referenced text
91 belongs to its owner(s).
92
93 The contents of this document are licensed under the
94 Creative Commons - Attribution / Share Alike license.
95
96 http://creativecommons.org/licenses/by-sa/2.0