[SECURITY] [DSA 1856-1] New mantis packages fix information leak

Les derniers commentaires publiés sur SecuObs (1-5):

- ESRT @DidierStevens - Hackin9 August issue Securing The Cloud - Microsoft LNK vulnerability fix coming on Monday - Script Video evilDEB.sh v0.1 - Metasploit - ESRT @WebSecurityNews - Black Hat: Researchers poke holes in HTTPS, SSL Web browser security - ESRT @edsmiley @jeremiahg - My BlackHat slides posted, Breaking Browsers: Hacking Auto-Complete Les derniers commentaires publiés sur SecuObs (6-25) Tous les commentaires publiés sur SecuObs avant les 5 derniers

[Message Precedent sur la mailing][Message Suivant sur la mailing][Precedent dans le fil][Prochain dans le fil][Index par Date][Index par fil] [SECURITY] [DSA 1856-1] New mantis packages fix information leak

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1856-1 security@xxxxxxxxxx link://[click] Thijs Kinkhorst August 08, 2009 link://[click] - ------------------------------------------------------------------------ Package : mantis Vulnerability : information leak Problem type : local Debian-specific: yes Debian Bug : 425010 It was discovered that the Debian Mantis package, a web based bug tracking system, installed the database credentials in a file with world-readable permissions onto the local filesystem. This allows local users to acquire the credentials used to control the Mantis database.

This updated package corrects this problem for new installations and will carefully try to update existing ones. Administrators can check the permissions of the file /etc/mantis/config_db.php to see if they are safe for their environment.

The old stable distribution (etch) does not contain a mantis package.

For the stable distribution (lenny), this problem has been fixed in version 1.1.6+dfsg-2lenny1.

For the unstable distribution (sid), this problem has been fixed in version 1.1.8+dfsg-2.

We recommend that you upgrade your mantis package.

Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 5.0 alias lenny - -------------------------------- Source archives: link://[click] Size/MD5 checksum: 2044082 429853b8caacc9e713b686524524418a link://[click] Size/MD5 checksum: 1208 f77403f035efa94936500520fe273692 link://[click] Size/MD5 checksum: 45118 68a32687bce135f3032a184c8ebf788f Architecture independent packages: link://[click] Size/MD5 checksum: 1744390 7a7ff3cd017be50fa3ba162ac82eb3de These files will probably be moved into the stable distribution on its next update.

- --------------------------------------------------------------------------------- For apt-get: deb link://[click] stable/updates main For dpkg-ftp: link://[click] dists/stable/updates/main Mailing list: debian-security-announce@xxxxxxxxxxxxxxxx Package info: `apt-cache show <pkg>' and link://[click]<pkg> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iQEcBAEBAgAGBQJKfdLzAAoJECIIoQCMVaAcuW8H/0gkWBpp7yRHdDUF2uOBOqfN migiA/tD6YKolGTPEvQ4rg3X9OehfMV8a8Jy/vtLkeNep2xHGSreinPf2nCclpI9 JOhGso4sW1VCLb1gPc0vvXW/bQ5CQVJKan2dxG4VAHi42R/t1Y0b8NzqSY0acoYF 9CD6edqlE0Xk/RABxjL0vrmox+n/3VPRHYdlu1eMdBgWPagjxvnA1RLEiAH/27w3 Ggu22Jh2WqEiftiVeUUSdGAt95/NJCDTmRTFXsNB+9pp1nk919Ys/g52F6yHCWxa dnkYGJuDQQ6VMtEYRYYXgBD9tStSvI7/KNdpdKkJzcEWKLrwgUSgjSR9MIlZPBM= =0ST9 -----END PGP SIGNATURE-----

Precedent par Date: [NGENUITY] - Spiceworks Multiple Vulnerabilities (XSS & CSRF)
Suivant par Date: [ MDVSA-2009:199 ] subversion
Precedent par fil : [NGENUITY] - Spiceworks Multiple Vulnerabilities (XSS & CSRF)
Suivant par fil : [ MDVSA-2009:199 ] subversion
Index(s):
- Date
- Fil

Archives de la liste de diffusion Secunia
Archives de la liste de diffusion BugTraq
Archives de la liste de diffusion DailyDave
Archives de la liste de diffusion FunSec
Archives de la liste de diffusion Full Disclosure
Archives de la liste de diffusion Focus-IDS (FD)
Archives de la liste de diffusion Webappsec (FD)
Archives de la liste de diffusion Security-basics (FD)
Archives de la liste de diffusion Vulndiscuss
Archives de la liste de diffusion Vulnwatch

Les derniers commentaires publiés sur SecuObs (6-25):

- rebind - DNS Rebinding Tool - ESRT @ToolsWatch - DOMTracer - Firefox Plugin Trace DOM and JavaScript Calls just released - ESRT @Carlos_Perez @sullrich - pfSense gets props for being the only router software defending against dns rebinding - ESRT @backtracklinux @emgent - Dharmaencoder NOW available in BackTrack 4 Repository - @BlackHatEvents @nathanhamiel - ESRT @jcran @ChrisJohnRiley - New release of PacketFu 1.0 at BSidesLV - Ruby packet manipulation - ESRT @curphey - Taint mode for Python - Cisco Internet Streamer Web Server Directory Traversal Vulnerability - Win32 Kernel Debugging with BinNavi - Playing With Tabnabbing - Introducing TitanMist - BSidesLV Beyond r57 - Snort 2.8.6.1 and Snort 2.9 Beta Released - Suricata 1.0.1 released - Wireshark 1.2.10, 1.0.15, and 1.4.0rc2 Released - SET 0.6 - Social Engineering Toolkit by @dave_rel1k - ESRT @maltainfosec @sandrogauci - acunetix just published a video on facebook xss exploitation - ESRT @dragosr @ChrisPaget - Extreme-range RFID - Slides, whitepaper, notes, and an open challenge - ESRT @phenrycissp - Researchers uncover Cisco firewall vulnerabilites, McAfee console flaws - Sourcefires open source framework for deep threat inspection - BitBlaze tool boosts bug-hunting productivity 10-fold Les cinq derniers commentaires publiés sur SecuObs Tous les commentaires publiés sur SecuObs avant les 25 derniers

SecuToolBox :

Bluetooth Stack Smasher v0.6 / Bluetooth Stack Smasher v0.8 / Slides Bluetooth Eurosec 2006 / Exposé vidéo Windows Shellcode - Kostya Kortchinsky / Exposé audio Reverse Engineering - Nicolas Brulez / Exposé vidéo Securitech - Pierre Betouin / WEP aircrack + Ubiquiti (MadWifi) 300 mW + Yagi / Secure WIFI WPA + EAP-TLS + Freeradius / Audit Windows / Captive Password Windows / USBDumper / USBDumper 2 / Hacking Hardware / WishMaster backdoor / DNS Auditing Tool / Ettercap SSL MITM / Exploit vulnérabilités Windows / Memory Dumper Kernel Hardening / Reverse Engineering / Scapy / SecUbuLIVE CD / Metasploit / eEye Blink Sec Center / eEye Retina Scanner + d'outils / + de tutoriels

Mini-Tagwall des articles publiés sur SecuObs :

sécurité, exploit, windows, microsoft, attaque, réseau, outil, vulnérabilité, audit, système, virus, internet, données, metasploit, présentation, linux, bluetooth, protocol, source, vista, scanner, réseaux, shell, rootkit, engineering, conférence, trames, paquet, téléphone, wishmaster, sysun, noyau, mobile, libre, botnet, https, téléphones, rapport, mémoire, scapy, google, patch, reverse, navigateur, snort + de mots clés avec l'annuaire des articles publiés sur SecuObs

Archives Failles Secunia :

- SA38830 Symantec Products File Parsing Multiple Vulnerabilities - SA40681 JBoss Enterprise SOA Platform Multiple Security Issues - SA38704 Lotus Notes File Parsing Multiple Vulnerabilities - SA40747 Cisco Multiple Products TLS Session Renegotiation Plaintext Injection - SA40730 IBM AIX BIND DNSSEC Cache Poisoning Vulnerability + d'archives failles avec Secunia et SecuMail

Archives Mailing Full Disclosure :

- Full-disclosure Jonathan Plourde est absent(e). - Full-disclosure Claude Mercier/CLSC-CHSLD BVLV/Reg03/SSSS est absent(e). - Full-disclosure NULL + H4CK3R Meet in Delhi on 31st July 2010 - Full-disclosure WAF fail - Re: Full-disclosure Day of bugs in WordPress 2 + d'archives Full Disclosure avec SecuMail

Archives Mailing Bugtraq :

- Akamai Download Manager arbitrary file download & execution - Insomnia : ISVA-100730.1 - CMS Multiple SQL injection Vulnerabilities - Day of bugs in WordPress 2 - SECURITY DSA 2077-1 New openldap packages fix potential code execution - HITB-Ann Reminder: HITB2010 Malaysia Call for Papers Closing August 9th - security bulletin HPSBUX02556 SSRT100014 rev.2 - HP-UX Running rpc.ttdbserver, Remote Execution of Arbitrary Code + d'archives Bugtraq avec SecuMail

Mini-Tagwall de l'annuaire video :

security, vmware, virus, biometric, metasploit, windows, lockpicking, password, botnet, tutorial, attack, network, linux, exploit, crypt, source, iphone, secconf, server, shmoocon, conficker, engineering, virtual, wimax, ettercap, rootkit, wireshark, reverse, hackitoergosum, cisco, internet, systm, hacker, firewall, wireless, openbsd, meterpreter, openssh, access, conference, knoppix, arduino, backtrack, brucon, remote + de mots clés avec l'annuaire des videos

Mini-Tagwall des articles de la revue de presse :

security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone, server, inject, patch, apple, twitter, mobile, virus, ebook, facebook, vulnérabilité, crypt, source, linux, password, intel, research, virtual, phish, access, tutorial, trojan, social, privacy, firefox, adobe, overflow, office, cisco, conficker, botnet, pirate, sécurité + de mots clés avec l'annuaire de la revue de presse

Mini-Tagwall des Tweets de la revue Twitter :

security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall, network, twitter, vmware, windows, microsoft, compliance, vulnerability, python, engineering, source, kernel, crypt, social, overflow, nessus, crack, hacker, virus, iphone, patch, virtual, javascript, malware, conficker, pentest, research, email, password, adobe, apache, proxy, backtrack + de mots clés avec l'annuaire de la revue Twitter