1 |
pva 07/09/13 17:01:47 |
2 |
|
3 |
Added: jffnms-0.8.3-misc-security-fixes.patch |
4 |
digest-jffnms-0.8.3-r2 |
5 |
Removed: digest-jffnms-0.8.2-r1 digest-jffnms-0.8.3-r1 |
6 |
Log: |
7 |
Fixes Multiple vulnerabilities (CVE-2007-31{89,90,91,92}) reported by Robert Buchholz <rbu AT gentoo.org> in bug #192240. |
8 |
(Portage version: 2.1.3.9) |
9 |
|
10 |
Revision Changes Path |
11 |
1.1 net-analyzer/jffnms/files/jffnms-0.8.3-misc-security-fixes.patch |
12 |
|
13 |
file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/jffnms-0.8.3-misc-security-fixes.patch?rev=1.1&view=markup |
14 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/jffnms-0.8.3-misc-security-fixes.patch?rev=1.1&content-type=text/plain |
15 |
|
16 |
Index: jffnms-0.8.3-misc-security-fixes.patch |
17 |
=================================================================== |
18 |
Fixes different security problems: |
19 |
http://bugs.gentoo.org/192240 |
20 |
|
21 |
|
22 |
diff -Naur jffnms-0.8.3/htdocs/admin/adm/test.php jffnms-0.8.4-pre3/htdocs/admin/adm/test.php |
23 |
--- jffnms-0.8.3/htdocs/admin/adm/test.php 2006-09-17 03:31:13.000000000 +0400 |
24 |
+++ jffnms-0.8.4-pre3/htdocs/admin/adm/test.php 1970-01-01 03:00:00.000000000 +0300 |
25 |
@@ -1 +0,0 @@ |
26 |
-<? phpinfo(); ?> |
27 |
\ В конце файла нет новой строки |
28 |
diff -Naur jffnms-0.8.3/htdocs/auth.php jffnms-0.8.4-pre3/htdocs/auth.php |
29 |
--- jffnms-0.8.3/htdocs/auth.php 2006-09-17 03:31:13.000000000 +0400 |
30 |
+++ jffnms-0.8.4-pre3/htdocs/auth.php 2007-06-07 16:00:08.000000000 +0400 |
31 |
@@ -46,11 +46,6 @@ |
32 |
session_start(); |
33 |
} |
34 |
|
35 |
- if (($jffnms_version=="0.0.0") && ($_SERVER["REMOTE_ADDR"]=="128.30.52.13")) { //W3C Validator |
36 |
- $_REQUEST["user"]="admin"; |
37 |
- $_REQUEST["pass"]="admin"; |
38 |
- } |
39 |
- |
40 |
if (!isset($_SESSION["authentification"])) |
41 |
$authentification = $jffnms->authenticate ($_REQUEST["user"],$_REQUEST["pass"],true,"from ".$_SERVER["REMOTE_ADDR"]); |
42 |
|
43 |
diff -Naur jffnms-0.8.3/lib/api.classes.inc.php jffnms-0.8.4-pre3/lib/api.classes.inc.php |
44 |
--- jffnms-0.8.3/lib/api.classes.inc.php 2006-09-17 03:31:14.000000000 +0400 |
45 |
+++ jffnms-0.8.4-pre3/lib/api.classes.inc.php 2007-06-07 16:00:08.000000000 +0400 |
46 |
@@ -677,7 +677,7 @@ |
47 |
$auth_type = 1; |
48 |
$cant_auth = 0; |
49 |
|
50 |
- if (isset($user) && isset($pass)) { |
51 |
+ if (preg_match("/^[\w\@\.]{0,20}$/", $user) && isset($pass)) { |
52 |
$query_auth = "select id as auth_user_id, usern as auth_user_name, passwd, fullname as auth_user_fullname from auth where usern = '$user'"; |
53 |
$result_auth = db_query ($query_auth); |
54 |
$cant_auth = db_num_rows($result_auth); |
55 |
@@ -693,18 +693,20 @@ |
56 |
} |
57 |
|
58 |
if (($auth==0) && ($cant_auth == 0)){ //not found in DB |
59 |
- if (isset($user) && isset($pass)) { |
60 |
+ |
61 |
+ if (preg_match("/^[\w\@\.]{0,20}$/", $user) && isset($pass)) { |
62 |
$query_auth = "select id as auth_user_id, username as auth_user_name, name as auth_user_fullname from clients where username= '$user' and password = '$pass'"; |
63 |
$result_auth = db_query ($query_auth); |
64 |
$auth = db_num_rows( $result_auth); |
65 |
} |
66 |
+ |
67 |
if ($auth==1) { |
68 |
$reg = db_fetch_array($result_auth); |
69 |
$auth_type = 2; |
70 |
} |
71 |
} |
72 |
|
73 |
- if (($log_event==true) && (!empty($user))) |
74 |
+ if (($log_event==true) && preg_match("/^[\w\@\.]{0,20}$/", $user)) |
75 |
insert_event(date("Y-m-d H:i:s",time()),get_config_option("jffnms_internal_type"),1,"Login",(($auth==1)?"successful":"failed"),$user,$log_event_info,"",0); |
76 |
|
77 |
unset ($reg["passwd"]); |
78 |
|
79 |
|
80 |
|
81 |
1.1 net-analyzer/jffnms/files/digest-jffnms-0.8.3-r2 |
82 |
|
83 |
file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/digest-jffnms-0.8.3-r2?rev=1.1&view=markup |
84 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/digest-jffnms-0.8.3-r2?rev=1.1&content-type=text/plain |
85 |
|
86 |
Index: digest-jffnms-0.8.3-r2 |
87 |
=================================================================== |
88 |
MD5 6f030ee09302b67f639eaff713b78c65 jffnms-0.8.3.tar.gz 698871 |
89 |
RMD160 681d498bf49f3e1011241254c441540ebbbe1860 jffnms-0.8.3.tar.gz 698871 |
90 |
SHA256 51f84606aa81113b2ea894c9e499f18df84e5317853aefd51610f5b279853ae4 jffnms-0.8.3.tar.gz 698871 |
91 |
|
92 |
|
93 |
|
94 |
-- |
95 |
gentoo-commits@g.o mailing list |