Ad: Manage updates with the Download App
ie8 fix

Spyware, viruses, & security forum: VULNERABILITIES / FIXES - December 05, 2012

by: Carol~ December 5, 2012 11:53 AM PST

Like this

0 people like this thread

Staff pick

VULNERABILITIES / FIXES - December 05, 2012

by Carol~ Moderator - 12/5/12 11:53 AM

ISC BIND DNS64 REQUIRE Assertion Failure Denial of Service Vulnerability

Release Date : 2012-12-05

Criticality level : Moderately critical
Impact : DoS
Where : From remote
Solution Status : Vendor Patch

Software: ISC BIND 9.8.x
ISC BIND 9.9.x

Description:
A vulnerability has been reported in ISC BIND, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error within the DNS64 IPv6 transition mechanism when handling certain queries, which can be exploited to trigger a REQUIRE assertion and crash the server via a specially crafted DNS query.

Successful exploitation requires that DNS64 is turned on.

The vulnerability is reported in versions 9.8.0 through 9.8.4 and 9.9.0 through 9.9.2.

Solution:
Update to version 9.8.4-P1 or 9.9.2-P1.

Provided and/or discovered by:
The vendor credits BlueCat Networks.

Original Advisory:
https://kb.isc.org/article/AA-00828
https://www.isc.org/software/bind/advisories/cve-2012-5688

http://secunia.com/advisories/51484/


Reply
Report offensive post
Email to friend

Citrix XenServer Multiple Vulnerabilities

by Carol~ Moderator - 12/5/12 11:58 AM

In Reply to: VULNERABILITIES / FIXES - December 05, 2012 by Carol~ Moderator

Release Date: 2012-12-05

Criticality level : Less critical
Impact : DoS
Privilege escalation
Where : Local system
Solution Status : Vendor Patch

Operating System : Citrix XenServer 5.0
Citrix XenServer 5.5
Citrix XenServer 5.6
Citrix XenServer 6.0
Citrix XenServer 6.1

Description:
Citrix has acknowledged multiple vulnerabilities in XenServer, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service) and potentially gain escalated privileges.

The vulnerabilities are reported in versions 6.1 and prior.

Solution:
Apply hotfixes (please see the vendor's advisory for details).

Original Advisory:
http://support.citrix.com/article/CTX135777

http://secunia.com/advisories/51486/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

cPanel Multiple Unspecified Vulnerabilities

by Carol~ Moderator - 12/5/12 11:58 AM

In Reply to: VULNERABILITIES / FIXES - December 05, 2012 by Carol~ Moderator

Release Date : 2012-12-05

Criticality level : Moderately critical
Impact : Unknown
Where : From remote
Solution Status : Vendor Patch

Software: cPanel 11.x

Description:
Multiple vulnerabilities with unknown impacts have been reported in cPanel.

The vulnerabilities are caused due to unspecified errors. No further information is currently available.

The vulnerabilities are reported in versions prior to 11.30.7.4, 11.32.5.15, and 11.34.0.11.

Solution:
Update to version 11.30.7.4, 11.32.5.15, or 11.34.0.11.

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
http://cpanel.net/important-security-release-cpanel-whm-11-30/
http://cpanel.net/important-11-32-security-update-cpanel-whm/
http://cpanel.net/important-11-34-security-release-cpanel-whm/

http://secunia.com/advisories/51494/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Mesa "validate_uniform_parameters()" Buffer Overflow

by Carol~ Moderator - 12/5/12 11:59 AM

In Reply to: VULNERABILITIES / FIXES - December 05, 2012 by Carol~ Moderator

Mesa "validate_uniform_parameters()" Buffer Overflow Vulnerability

Release Date : 2012-12-05

Criticality level : Less critical
Impact : DoS
Where : From remote
Solution Status : Vendor Patch

Software: Mesa 8.x

Description:
A vulnerability has been reported in Mesa, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error within the "validate_uniform_parameters()" function (main/uniform_query.cpp) when handling certain uniform values and can be exploited to cause a heap-based buffer overflow.

The vulnerability is reported in versions 8.0.5 and prior.

Solution:
No official solution is currently available.

Provided and/or discovered by:
Originally reported by miaubiz in Google Chrome.

Original Advisory:
http://www.mail-archive.com/mesa-dev@lists.freedesktop.org/msg29015.html

http://secunia.com/advisories/51489/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Apache Tomcat Multiple Vulnerabilities

by Carol~ Moderator - 12/5/12 11:59 AM

In Reply to: VULNERABILITIES / FIXES - December 05, 2012 by Carol~ Moderator

Release Date : 2012-12-05

Criticality level : Moderately critical
Impact : Security Bypass
DoS
Where : From remote
Solution Status : Vendor Patch

Software: Apache Tomcat 6.x
Apache Tomcat 7.x

Description:
Some vulnerabilities have been reported in Apache Tomcat, which can be exploited by malicious people to bypass certain security restrictions and cause a DoS (Denial of Service).

1) An error within the NIO connector when transferring files using sendfile over HTTPS can be exploited to trigger an infinite loop and cause excessive consumption of CPU resources.

This vulnerability is reported in versions prior to 7.0.27 and 6.0.35.

2) An error within the FormAuthenticator component when handling authentication requests can be exploited to bypass the authentication mechanism via a specially crafted request.

This vulnerability is reported in versions prior to 7.0.29 and 6.0.35.

3) An error within the "doFilter()" method when accessing protected resources can be exploited to bypass the CSRF prevention filter and access the resource without a session identifier.

This vulnerability is reported in versions prior to 7.0.31 and 6.0.35.

Solution:
Update to a fixed version.

Provided and/or discovered by:
1) The vendor credits Arun Neelicattu, Red Hat Security Response Team
2, 3) Reported by the vendor.

Original Advisory:
http://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.36
http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.32

http://secunia.com/advisories/51425/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Red Hat Network Proxy / Network Satellite Server jabberd

by Carol~ Moderator - 12/5/12 11:59 AM

In Reply to: VULNERABILITIES / FIXES - December 05, 2012 by Carol~ Moderator

Red Hat Network Proxy / Network Satellite Server jabberd XMPP Dialback Protection Bypass

Release Date : 2012-12-05

Criticality level : Moderately critical
Impact : Security Bypass
Where : From remote
Solution Status : Vendor Patch

Software: Red Hat Network Proxy 5.x
Red Hat Network Satellite Server 5.x

Description:
Red Hat has acknowledged a vulnerability in Red Hat Network Proxy and Red Hat Network Satellite Server, which can be exploited by malicious people to bypass certain security restrictions.

Solution:
Updated packages are available via Red Hat Network.

Original Advisory:
RHSA-2012:1538-1:
https://rhn.redhat.com/errata/RHSA-2012-1538.html

RHSA-2012:1539-1:
https://rhn.redhat.com/errata/RHSA-2012-1539.html

http://secunia.com/advisories/51475/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Opera GIF Image Handling Buffer Underflow Vulnerability

by Carol~ Moderator - 12/5/12 12:00 PM

In Reply to: VULNERABILITIES / FIXES - December 05, 2012 by Carol~ Moderator

Release Date : 2012-12-05

Criticality level : Highly critical
Impact : System access
Where : From remote
Solution Status : Unpatched

Software: Opera 12.x

Description:
Kaveh Ghaemmaghami has discovered a vulnerability in Opera, which can be exploited by malicious people to potentially compromise a user's system.

The vulnerability is caused due to an error when decoding image data and can be exploited to cause a heap-based buffer underflow via a specially crafted GIF image.

Successful exploitation may allow execution of arbitrary code.

The vulnerability is confirmed in version 12.11 Build 1661. Other versions may also be affected.

Solution:
No official solution is currently available.

Provided and/or discovered by:
Kaveh Ghaemmaghami

Original Advisory:
http://archives.neohapsis.com/archives/fulldisclosure/2012-12/0055.html

http://secunia.com/advisories/51462/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Red Hat CloudForms Multiple Vulnerabilities

by Carol~ Moderator - 12/5/12 1:00 PM

In Reply to: VULNERABILITIES / FIXES - December 05, 2012 by Carol~ Moderator

Release Date : 2012-12-05

Criticality level : Moderately critical
Impact : Security Bypass
Cross Site Scripting
Manipulation of data
Exposure of sensitive information
Privilege escalation
DoS
System access
Where : From remote
Solution Status : Vendor Patch

Software: Red Hat CloudForms

Description:
Multiple vulnerabilities have been reported in Red Hat CloudForms, which can be exploited by malicious, local users to disclose potentially sensitive information, manipulate certain data, and perform certain actions with escalated privileges, by malicious users to disclose and manipulate certain data and cause a DoS (Denial of Service), and by malicious people to conduct cross-site scripting and SQL injection attacks, bypass certain security restrictions, manipulate certain data, cause a DoS, and compromise a vulnerable system.

1) An error due to Katello not properly checking user permissions can be exploited to download consumer certificates or change settings of other users' system.

Successful exploitation of this vulnerability requires knowledge of the UUID of the target system.

2) An error exists due to Pulp logging administrative passwords to a world readable log file.

3) An error due to Pulp's configuration file (pulp.conf) being installed as world readable can be exploited to disclose e.g. the administrative password.

4) An error due to grinder having insecure permissions for the cache folder (/var/lib/pulp/cache/grinder) can be exploited to access and modify cache files.

5) Errors exists due to the application bundles a vulnerable version of Ruby.

6) Errors exists due to the application bundles a vulnerable version of Puppet.

Solution:
Updated packages are available via Red Hat Network.

Provided and/or discovered by:
1) Lukas Zapletal, Red Hat
2) James Laska, Red Hat
3) Kurt Seifried, Red Hat
4) James Labocki, Red Hat

Original Advisory:
RHSA-2012-1542-1:
https://rhn.redhat.com/errata/RHSA-2012-1542.html

RHSA-2012-1543-1:
https://rhn.redhat.com/errata/RHSA-2012-1543.html

http://secunia.com/advisories/51472/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

SUSE update for xen

by Carol~ Moderator - 12/5/12 1:02 PM

In Reply to: VULNERABILITIES / FIXES - December 05, 2012 by Carol~ Moderator

Release Date: 2012-12-05

Criticality level : Less critical
Impact : DoS
Privilege escalation
Where : Local system
Solution Status : Vendor Patch

Operating System : SUSE Linux Enterprise Server (SLES) 10

Description:
SUSE has issued an update for xen. This fixes two vulnerabilities, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service) and potentially gain escalated privileges.

Solution:
Apply updated packages via the zypper package manager.

Original Advisory:
SUSE-SU-2012:1606-1:
http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00000.html

http://secunia.com/advisories/51495/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Red Hat update for kernel

by Carol~ Moderator - 12/5/12 2:58 PM

In Reply to: VULNERABILITIES / FIXES - December 05, 2012 by Carol~ Moderator

Release Date: 2012-12-05

Criticality level : Less critical
Impact : DoS
Privilege escalation
Where : Local system
Solution Status : Vendor Patch

Operating System : Red Hat Enterprise Linux Desktop 5
Red Hat Enterprise Linux Server 5

Description:
Red Hat has issued an update for the kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service) and potentially gain escalated privileges and by malicious people to cause a DoS (Denial of Service).

Solution:
Updated packages are available via Red Hat Network.

Original Advisory:
RHSA-2012:1540-1:
https://rhn.redhat.com/errata/RHSA-2012-1540.html

http://secunia.com/advisories/51473/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Ubuntu update for linux-ec2

by Carol~ Moderator - 12/5/12 3:08 PM

In Reply to: VULNERABILITIES / FIXES - December 05, 2012 by Carol~ Moderator

Release Date: 2012-12-05

Criticality level : Not critical
Impact : DoS
Where : Local system
Solution Status : Vendor Patch

Operating System : Ubuntu Linux 10.10

Description:
Ubuntu has issued an update for linux-ec2. This fixes a weakness, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

The weakness is caused due to a divide-by-zero error within the "tcp_illinois_info()" function (net/ipv4/tcp_illinois.c) when reading TCP stats and can be exploited to cause a kernel oops.

Solution:
Apply updated packages.

Provided and/or discovered by:
The vendor credits Rodrigo Freire, Red Hat.

Original Advisory:
USN-1653-1:
http://www.ubuntu.com/usn/usn-1653-1/

http://thread.gmane.org/gmane.linux.network/247871

http://secunia.com/advisories/51470/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Forum Icon Legend

  • UnreadUnread
  • ReadRead
  • Locked threadLocked thread
  •   
  •   
  •   
  •   
  •   
  •   
  •   
  • ModeratorModerator
  • CNET StaffCNET Staff
  • Samsung StaffSamsung Staff
  • Norton Authorized Support TeamNorton Authorized Support Team
  • AVG StaffAVG Staff
  • avast! Staffavast! Staff
  • Webroot Support TeamWebroot Support Team
  • Acer Customer Experience TeamAcer Customer Experience Team
  • Windows Outreach TeamWindows Outreach Team
  • DISH staffDISH staff
  • Dell StaffDell Staff
  • Intel StaffIntel Staff
  • QuestionQuestion
  • Resolved questionResolved question
  • General discussionGeneral discussion
  • TipTip
  • Alert or warningAlert or warning
  • PraisePraise
  • RantRant

You are e-mailing the following post: Post Subject

Your e-mail address is used only to let the recipient know who sent the e-mail and in case of transmission error. Neither your address nor the recipient's address will be used for any other purpose.

Sorry, there was a problem emailing this post. Please try again.

Submit Email Cancel

Thank you. Sent email to

Close

Thank you. Sent email to

Close

You are reporting the following post: Post Subject

If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.

Offensive: Sexually explicit or offensive language

Spam: Advertisements or commercial links

Disruptive posting: Flaming or offending other users

Illegal activities: Promote cracked software, or other illegal content

Sorry, there was a problem submitting your post. Please try again.

Submit Report Cancel

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

You are posting a reply to: Post Subject

The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to the CNET Forums policies for details. All submitted content is subject to CBS Interactive Site Terms of Use.

You are currently tracking this discussion. Click here to manage your tracked discussions.

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

Sorry, there was a problem submitting your post. Please try again.

Sorry, there was a problem generating the preview. Please try again.

Duplicate posts are not allowed in the forums. Please edit your post and submit again.

Submit Reply Preview Cancel

Thank you, , your post has been submitted.

> Click here to view your post. > Manage your tracked discussions. > Track this discussion. Close

Thank you, , your post has been submitted and will appear on our site shortly.

Close