[gentoo-commits] gentoo-x86 commit in net-analyzer/jffnms/files: jffnms-0.8.3-misc-security-fixes.patch digest-jffnms-0.8.3-r2 digest-jffnms-0.8.2-r1 digest-jffnms-0.8.3-r1 - gentoo-commits

From:	"Peter Volkov (pva)" <pva@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] gentoo-x86 commit in net-analyzer/jffnms/files: jffnms-0.8.3-misc-security-fixes.patch digest-jffnms-0.8.3-r2 digest-jffnms-0.8.2-r1 digest-jffnms-0.8.3-r1
Date:	Thu, 13 Sep 2007 17:09:08
Message-Id:	`E1IVs4Z-0000AH-If@stork.gentoo.org`

1

pva         07/09/13 17:01:47

2

3

  Added:                jffnms-0.8.3-misc-security-fixes.patch

4

                        digest-jffnms-0.8.3-r2

5

  Removed:              digest-jffnms-0.8.2-r1 digest-jffnms-0.8.3-r1

6

  Log:

7

  Fixes Multiple vulnerabilities (CVE-2007-31{89,90,91,92}) reported by Robert Buchholz <rbu AT gentoo.org> in bug #192240.

8

  (Portage version: 2.1.3.9)

9

10

Revision  Changes    Path

11

1.1                  net-analyzer/jffnms/files/jffnms-0.8.3-misc-security-fixes.patch

12

13

file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/jffnms-0.8.3-misc-security-fixes.patch?rev=1.1&view=markup

14

plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/jffnms-0.8.3-misc-security-fixes.patch?rev=1.1&content-type=text/plain

15

16

Index: jffnms-0.8.3-misc-security-fixes.patch

17

===================================================================

18

Fixes different security problems:

19

http://bugs.gentoo.org/192240

20

21

22

diff -Naur jffnms-0.8.3/htdocs/admin/adm/test.php jffnms-0.8.4-pre3/htdocs/admin/adm/test.php

23

--- jffnms-0.8.3/htdocs/admin/adm/test.php	2006-09-17 03:31:13.000000000 +0400

24

+++ jffnms-0.8.4-pre3/htdocs/admin/adm/test.php	1970-01-01 03:00:00.000000000 +0300

25

@@ -1 +0,0 @@

26

-<? phpinfo(); ?>

27

\ В конце файла нет новой строки

28

diff -Naur jffnms-0.8.3/htdocs/auth.php jffnms-0.8.4-pre3/htdocs/auth.php

29

--- jffnms-0.8.3/htdocs/auth.php	2006-09-17 03:31:13.000000000 +0400

30

+++ jffnms-0.8.4-pre3/htdocs/auth.php	2007-06-07 16:00:08.000000000 +0400

31

@@ -46,11 +46,6 @@

32

 		    session_start();

33

}

34

35

-		if (($jffnms_version=="0.0.0") && ($_SERVER["REMOTE_ADDR"]=="128.30.52.13")) { //W3C Validator

36

-		    $_REQUEST["user"]="admin";

37

-		    $_REQUEST["pass"]="admin";

38

-		}

39

-

40

 		if (!isset($_SESSION["authentification"]))

41

 		    $authentification = $jffnms->authenticate ($_REQUEST["user"],$_REQUEST["pass"],true,"from ".$_SERVER["REMOTE_ADDR"]);

42

43

diff -Naur jffnms-0.8.3/lib/api.classes.inc.php jffnms-0.8.4-pre3/lib/api.classes.inc.php

44

--- jffnms-0.8.3/lib/api.classes.inc.php	2006-09-17 03:31:14.000000000 +0400

45

+++ jffnms-0.8.4-pre3/lib/api.classes.inc.php	2007-06-07 16:00:08.000000000 +0400

46

@@ -677,7 +677,7 @@

47

     	    $auth_type = 1;

48

 	    $cant_auth = 0;

49

50

-	    if (isset($user) && isset($pass)) {

51

+	    if (preg_match("/^[\w\@\.]{0,20}$/", $user) && isset($pass)) {

52

 		$query_auth = "select id as auth_user_id, usern as auth_user_name, passwd, fullname as auth_user_fullname from auth where usern = '$user'";

53

 		$result_auth = db_query ($query_auth);

54

 		$cant_auth = db_num_rows($result_auth);

55

@@ -693,18 +693,20 @@

56

}

57

58

 	    if (($auth==0) && ($cant_auth == 0)){  //not found in DB

59

-		if (isset($user) && isset($pass)) {

60

+

61

+		if (preg_match("/^[\w\@\.]{0,20}$/", $user) && isset($pass)) {

62

     		    $query_auth = "select id as auth_user_id, username as auth_user_name, name as auth_user_fullname from clients where username= '$user' and password = '$pass'";

63

 		    $result_auth = db_query ($query_auth);

64

 		    $auth = db_num_rows( $result_auth);

65

}

66

+

67

 		if ($auth==1) { 

68

 		    $reg = db_fetch_array($result_auth);

69

 		    $auth_type = 2;

70

}

71

}

72

73

-	    if (($log_event==true) && (!empty($user)))

74

+	    if (($log_event==true) && preg_match("/^[\w\@\.]{0,20}$/", $user))

75

 		insert_event(date("Y-m-d H:i:s",time()),get_config_option("jffnms_internal_type"),1,"Login",(($auth==1)?"successful":"failed"),$user,$log_event_info,"",0);

76

77

 	    unset ($reg["passwd"]);

1.1                  net-analyzer/jffnms/files/digest-jffnms-0.8.3-r2

82

83

file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/digest-jffnms-0.8.3-r2?rev=1.1&view=markup

84

plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/digest-jffnms-0.8.3-r2?rev=1.1&content-type=text/plain

85

86

Index: digest-jffnms-0.8.3-r2

87

===================================================================

88

MD5 6f030ee09302b67f639eaff713b78c65 jffnms-0.8.3.tar.gz 698871

89

RMD160 681d498bf49f3e1011241254c441540ebbbe1860 jffnms-0.8.3.tar.gz 698871

90

SHA256 51f84606aa81113b2ea894c9e499f18df84e5317853aefd51610f5b279853ae4 jffnms-0.8.3.tar.gz 698871

--

95

gentoo-commits@g.o mailing list

1	pva 07/09/13 17:01:47
2
3	Added: jffnms-0.8.3-misc-security-fixes.patch
4	digest-jffnms-0.8.3-r2
5	Removed: digest-jffnms-0.8.2-r1 digest-jffnms-0.8.3-r1
6	Log:
7	Fixes Multiple vulnerabilities (CVE-2007-31{89,90,91,92}) reported by Robert Buchholz <rbu AT gentoo.org> in bug #192240.
8	(Portage version: 2.1.3.9)
9
10	Revision Changes Path
11	1.1 net-analyzer/jffnms/files/jffnms-0.8.3-misc-security-fixes.patch
12
13	file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/jffnms-0.8.3-misc-security-fixes.patch?rev=1.1&view=markup
14	plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/jffnms-0.8.3-misc-security-fixes.patch?rev=1.1&content-type=text/plain
15
16	Index: jffnms-0.8.3-misc-security-fixes.patch
17	===================================================================
18	Fixes different security problems:
19	http://bugs.gentoo.org/192240
20
21
22	diff -Naur jffnms-0.8.3/htdocs/admin/adm/test.php jffnms-0.8.4-pre3/htdocs/admin/adm/test.php
23	--- jffnms-0.8.3/htdocs/admin/adm/test.php 2006-09-17 03:31:13.000000000 +0400
24	+++ jffnms-0.8.4-pre3/htdocs/admin/adm/test.php 1970-01-01 03:00:00.000000000 +0300
25	@@ -1 +0,0 @@
26	-<? phpinfo(); ?>
27	\ В конце файла нет новой строки
28	diff -Naur jffnms-0.8.3/htdocs/auth.php jffnms-0.8.4-pre3/htdocs/auth.php
29	--- jffnms-0.8.3/htdocs/auth.php 2006-09-17 03:31:13.000000000 +0400
30	+++ jffnms-0.8.4-pre3/htdocs/auth.php 2007-06-07 16:00:08.000000000 +0400
31	@@ -46,11 +46,6 @@
32	session_start();
33	}
34
35	- if (($jffnms_version=="0.0.0") && ($_SERVER["REMOTE_ADDR"]=="128.30.52.13")) { //W3C Validator
36	- $_REQUEST["user"]="admin";
37	- $_REQUEST["pass"]="admin";
38	- }
39	-
40	if (!isset($_SESSION["authentification"]))
41	$authentification = $jffnms->authenticate ($_REQUEST["user"],$_REQUEST["pass"],true,"from ".$_SERVER["REMOTE_ADDR"]);
42
43	diff -Naur jffnms-0.8.3/lib/api.classes.inc.php jffnms-0.8.4-pre3/lib/api.classes.inc.php
44	--- jffnms-0.8.3/lib/api.classes.inc.php 2006-09-17 03:31:14.000000000 +0400
45	+++ jffnms-0.8.4-pre3/lib/api.classes.inc.php 2007-06-07 16:00:08.000000000 +0400
46	@@ -677,7 +677,7 @@
47	$auth_type = 1;
48	$cant_auth = 0;
49
50	- if (isset($user) && isset($pass)) {
51	+ if (preg_match("/^[\w\@\.]{0,20}$/", $user) && isset($pass)) {
52	$query_auth = "select id as auth_user_id, usern as auth_user_name, passwd, fullname as auth_user_fullname from auth where usern = '$user'";
53	$result_auth = db_query ($query_auth);
54	$cant_auth = db_num_rows($result_auth);
55	@@ -693,18 +693,20 @@
56	}
57
58	if (($auth==0) && ($cant_auth == 0)){ //not found in DB
59	- if (isset($user) && isset($pass)) {
60	+
61	+ if (preg_match("/^[\w\@\.]{0,20}$/", $user) && isset($pass)) {
62	$query_auth = "select id as auth_user_id, username as auth_user_name, name as auth_user_fullname from clients where username= '$user' and password = '$pass'";
63	$result_auth = db_query ($query_auth);
64	$auth = db_num_rows( $result_auth);
65	}
66	+
67	if ($auth==1) {
68	$reg = db_fetch_array($result_auth);
69	$auth_type = 2;
70	}
71	}
72
73	- if (($log_event==true) && (!empty($user)))
74	+ if (($log_event==true) && preg_match("/^[\w\@\.]{0,20}$/", $user))
75	insert_event(date("Y-m-d H:i:s",time()),get_config_option("jffnms_internal_type"),1,"Login",(($auth==1)?"successful":"failed"),$user,$log_event_info,"",0);
76
77	unset ($reg["passwd"]);
78
79
80
81	1.1 net-analyzer/jffnms/files/digest-jffnms-0.8.3-r2
82
83	file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/digest-jffnms-0.8.3-r2?rev=1.1&view=markup
84	plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/digest-jffnms-0.8.3-r2?rev=1.1&content-type=text/plain
85
86	Index: digest-jffnms-0.8.3-r2
87	===================================================================
88	MD5 6f030ee09302b67f639eaff713b78c65 jffnms-0.8.3.tar.gz 698871
89	RMD160 681d498bf49f3e1011241254c441540ebbbe1860 jffnms-0.8.3.tar.gz 698871
90	SHA256 51f84606aa81113b2ea894c9e499f18df84e5317853aefd51610f5b279853ae4 jffnms-0.8.3.tar.gz 698871
91
92
93
94	--
95	gentoo-commits@g.o mailing list

Gentoo Archives: gentoo-commits