Category:Security:SSA - Revision history

Erik: mozilla-* up to date

2012-02-10T14:30:07Z

mozilla-* up to date

← Older revision		Revision as of 14:30, 10 February 2012
Line 108:		Line 108:
	==== [http://cvedetails.com/cve/CVE-2011-2943 CVE-2011-2943] (Denial Of Service) affected: current, 13.37 and all before ====		==== [http://cvedetails.com/cve/CVE-2011-2943 CVE-2011-2943] (Denial Of Service) affected: current, 13.37 and all before ====
	The irc_msg_who function in msgs.c in the IRC protocol plugin in libpurple 2.8.0 through 2.9.0 in Pidgin before 2.10.0 does not properly validate characters in nicknames, which allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted nickname that is not properly handled in a WHO response.		The irc_msg_who function in msgs.c in the IRC protocol plugin in libpurple 2.8.0 through 2.9.0 in Pidgin before 2.10.0 does not properly validate characters in nicknames, which allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted nickname that is not properly handled in a WHO response.

	~~=== mozilla-firefox (various issues, all versions impacted) ===~~
	~~From http://www.mozilla.org/security/known-vulnerabilities/firefox.html#firefox9, at LEAST:~~

	~~Fixed in Firefox 9:~~
	*MFSA 2011-58 Crash scaling <video> to extreme sizes
	*MFSA 2011-57 Crash when plugin removes itself on Mac OS X
	*MFSA 2011-56 Key detection without JavaScript via SVG animation
	*MFSA 2011-55 nsSVGValue out-of-bounds access
	*MFSA 2011-54 Potentially exploitable crash in the YARR regular expression library
	*MFSA 2011-53 Miscellaneous memory safety hazards (rv:9.0)

	~~=== mozilla-thunderbird (various issues, all versions impacted) ===~~
	~~From http://www.mozilla.org/security/known-vulnerabilities/thunderbird.html#thunderbird9, at LEAST:~~

	~~Fixed in Thunderbird 9:~~
	*MFSA 2011-58 Crash scaling <video> to extreme sizes
	*MFSA 2011-57 Crash when plugin removes itself on Mac OS X
	*MFSA 2011-56 Key detection without JavaScript via SVG animation
	*MFSA 2011-55 nsSVGValue out-of-bounds access
	*MFSA 2011-54 Potentially exploitable crash in the YARR regular expression library
	*MFSA 2011-53 Miscellaneous memory safety hazards (rv:9.0)

	~~=== seamonkey (various issues, all versions impacted) ===~~
	~~From http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html#seamonkey2.6, at LEAST:~~

	~~Fixed in SeaMonkey 2.6:~~
	*MFSA 2011-58 Crash scaling <video> to extreme sizes
	*MFSA 2011-57 Crash when plugin removes itself on Mac OS X
	*MFSA 2011-56 Key detection without JavaScript via SVG animation
	*MFSA 2011-55 nsSVGValue out-of-bounds access
	*MFSA 2011-54 Potentially exploitable crash in the YARR regular expression library
	*MFSA 2011-53 Miscellaneous memory safety hazards (rv:9.0)

Erik: php up to date

2012-02-10T14:29:23Z

php up to date

← Older revision		Revision as of 14:29, 10 February 2012
Line 73:		Line 73:
	==== [http://cvedetails.com/cve/CVE-2011-2748 CVE-2011-2748] (Denial Of Service) affected: current, 13.37, and all before ====		==== [http://cvedetails.com/cve/CVE-2011-2748 CVE-2011-2748] (Denial Of Service) affected: current, 13.37, and all before ====
	The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted DHCP packet.		The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted DHCP packet.

	~~=== php ===~~
	~~==== [http://cvedetails.com/cve/CVE-2011-4885 CVE-2011-4885] (Denial Of Service) affected: current, 13.37 and all before ====~~
	PHP before 5.3.9 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.

	==== [http://cvedetails.com/cve/CVE-2011-3379 CVE-2011-3379] (Execute Code) affected: current, 13.37 through 12.0 ====		==== [http://cvedetails.com/cve/CVE-2011-3379 CVE-2011-3379] (Execute Code) affected: current, 13.37 through 12.0 ====

Erik: proftpd up to date

2012-02-10T14:28:47Z

proftpd up to date

← Older revision		Revision as of 14:28, 10 February 2012
Line 73:		Line 73:
	==== [http://cvedetails.com/cve/CVE-2011-2748 CVE-2011-2748] (Denial Of Service) affected: current, 13.37, and all before ====		==== [http://cvedetails.com/cve/CVE-2011-2748 CVE-2011-2748] (Denial Of Service) affected: current, 13.37, and all before ====
	The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted DHCP packet.		The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted DHCP packet.

	~~=== proftpd ===~~
	~~==== [http://cvedetails.com/cve/CVE-2011-4130 CVE-2011-4130] (Execute Code) affected: current, 13.37, and all before ====~~
	~~([http://bugs.proftpd.org/show_bug.cgi?id=3711 proftpd bug tracker #3711])~~

	Use-after-free vulnerability in the Response API in ProFTPD '''before 1.3.3g''' allows remote authenticated users to execute arbitrary code via vectors involving an error that occurs after an FTP data transfer.

	=== php ===		=== php ===

Erik: httpd up to date

2012-02-10T14:28:17Z

httpd up to date

@@ Line 61: / Line 61: @@
 == n ==
 === dhcp ===
 ==== [http://cvedetails.com/cve/CVE-2011-4868 CVE-2011-4868] (Denial Of Service) affected: current, 13.37, and all before ====

Erik: freetype2 up to date

2012-02-04T02:34:56Z

freetype2 up to date

← Older revision		Revision as of 02:34, 4 February 2012
Line 55:		Line 55:
	==== [http://cvedetails.com/cve/CVE-2011-0764 CVE-2011-0764] (Execute Code) affected: current, 13.37 and all before ====		==== [http://cvedetails.com/cve/CVE-2011-0764 CVE-2011-0764] (Execute Code) affected: current, 13.37 and all before ====
	t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6 and other products, uses an invalid pointer in conjunction with a dereference operation, which allows remote attackers to execute arbitrary code via a crafted Type 1 font in a PDF document, as demonstrated by testz.2184122398.pdf.		t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6 and other products, uses an invalid pointer in conjunction with a dereference operation, which allows remote attackers to execute arbitrary code via a crafted Type 1 font in a PDF document, as demonstrated by testz.2184122398.pdf.

	~~=== freetype2 ===~~
	~~==== [http://cvedetails.com/cve/CVE-2011-0226 CVE-2011-0226] (Denial Of Service, Execute Code, Memory corruption) affected: current, 13.37 and all before ====~~
	Integer signedness error in psaux/t1decode.c in FreeType before 2.4.6, as used in CoreGraphics in Apple iOS before 4.2.9 and 4.3.x before 4.3.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Type 1 font in a PDF document, as exploited in the wild in July 2011.

	=== libxml2 ===		=== libxml2 ===

Asteroid: /* openssl */ OpenSSL up to date on february, 02 2012

2012-02-03T08:58:30Z

openssl: OpenSSL up to date on february, 02 2012

@@ Line 87: / Line 87: @@
 ==== [http://cvedetails.com/cve/CVE-2011-2748 CVE-2011-2748] (Denial Of Service) affected: current, 13.37, and all before ====
 The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted DHCP packet.
 === proftpd  ===

Adrien: mozilla-thunderbird

2012-01-31T10:53:36Z

mozilla-thunderbird

← Older revision		Revision as of 10:53, 31 January 2012
Line 156:		Line 156:

	Fixed in Firefox 9:		Fixed in Firefox 9:
			*MFSA 2011-58 Crash scaling <video> to extreme sizes
			*MFSA 2011-57 Crash when plugin removes itself on Mac OS X
			*MFSA 2011-56 Key detection without JavaScript via SVG animation
			*MFSA 2011-55 nsSVGValue out-of-bounds access
			*MFSA 2011-54 Potentially exploitable crash in the YARR regular expression library
			*MFSA 2011-53 Miscellaneous memory safety hazards (rv:9.0)

			=== mozilla-thunderbird (various issues, all versions impacted) ===
			From http://www.mozilla.org/security/known-vulnerabilities/thunderbird.html#thunderbird9, at LEAST:

			Fixed in Thunderbird 9:
	*MFSA 2011-58 Crash scaling <video> to extreme sizes		*MFSA 2011-58 Crash scaling <video> to extreme sizes
	*MFSA 2011-57 Crash when plugin removes itself on Mac OS X		*MFSA 2011-57 Crash when plugin removes itself on Mac OS X
Line 164:		Line 175:

	=== seamonkey (various issues, all versions impacted) ===		=== seamonkey (various issues, all versions impacted) ===
			From http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html#seamonkey2.6, at LEAST:

	~~From http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html#seamonkey2.6, at LEAST:~~
	Fixed in SeaMonkey 2.6:		Fixed in SeaMonkey 2.6:
	*MFSA 2011-58 Crash scaling <video> to extreme sizes		*MFSA 2011-58 Crash scaling <video> to extreme sizes

Adrien: seamonkey

2012-01-31T10:49:13Z

seamonkey

← Older revision		Revision as of 10:49, 31 January 2012
Line 152:		Line 152:
	The irc_msg_who function in msgs.c in the IRC protocol plugin in libpurple 2.8.0 through 2.9.0 in Pidgin before 2.10.0 does not properly validate characters in nicknames, which allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted nickname that is not properly handled in a WHO response.		The irc_msg_who function in msgs.c in the IRC protocol plugin in libpurple 2.8.0 through 2.9.0 in Pidgin before 2.10.0 does not properly validate characters in nicknames, which allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted nickname that is not properly handled in a WHO response.

	=== mozilla-firefox (various issues, all versions ~~vulnerable~~) ===		=== mozilla-firefox (various issues, all versions impacted) ===
	From http://www.mozilla.org/security/known-vulnerabilities/firefox.html#firefox9, at LEAST:		From http://www.mozilla.org/security/known-vulnerabilities/firefox.html#firefox9, at LEAST:

	Fixed in Firefox 9:		Fixed in Firefox 9:
			*MFSA 2011-58 Crash scaling <video> to extreme sizes
			*MFSA 2011-57 Crash when plugin removes itself on Mac OS X
			*MFSA 2011-56 Key detection without JavaScript via SVG animation
			*MFSA 2011-55 nsSVGValue out-of-bounds access
			*MFSA 2011-54 Potentially exploitable crash in the YARR regular expression library
			*MFSA 2011-53 Miscellaneous memory safety hazards (rv:9.0)

			=== seamonkey (various issues, all versions impacted) ===

			From http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html#seamonkey2.6, at LEAST:
			Fixed in SeaMonkey 2.6:
	*MFSA 2011-58 Crash scaling <video> to extreme sizes		*MFSA 2011-58 Crash scaling <video> to extreme sizes
	*MFSA 2011-57 Crash when plugin removes itself on Mac OS X		*MFSA 2011-57 Crash when plugin removes itself on Mac OS X

Cccc828: /* n */

2012-01-31T10:39:25Z

← Older revision		Revision as of 10:39, 31 January 2012
Line 118:		Line 118:

	==== [http://cvedetails.com/cve/CVE-2011-3379 CVE-2011-3379] (Execute Code) affected: current, 13.37 through 12.0 ====		==== [http://cvedetails.com/cve/CVE-2011-3379 CVE-2011-3379] (Execute Code) affected: current, 13.37 through 12.0 ====
	The is_a function in PHP 5.3.7 and 5.3.8 triggers a call to the __autoload function, which makes it easier for remote attackers to execute arbitrary code by providing a crafted URL and leveraging potentially unsafe behavior in certain PEAR packages and custom autoloaders.		The is_a function in PHP 5.3.7 and 5.3.8 triggers a call to the __autoload function, which makes it easier for remote attackers to execute arbitrary code by providing a crafted URL and leveraging potentially unsafe behavior in certain PEAR packages and custom autoloaders.

			=== curl ===
			==== [http://curl.haxx.se/docs/adv_20120124.html CVE-2012-0036] (Execute Code) affected: current, and all before ====
			curl is vulnerable to a data injection attack for certain protocols through control characters embedded or percent-encoded in URLs.

			==== [http://curl.haxx.se/docs/adv_20120124B.html CVE-2011-3389] (man-in-the-middle attacks) affected: current, 13.37 ====
			curl is vulnerable to a SSL CBC IV vulnerability when built to use OpenSSL for the SSL/TLS layer.

	== x ==		== x ==

Adrien: Turn mozilla-* into mozilla-firefox; add _some_ know issues (those fixed in ff9)

2012-01-31T10:34:29Z

Turn mozilla-* into mozilla-firefox; add _some_ know issues (those fixed in ff9)

← Older revision		Revision as of 10:34, 31 January 2012
Line 145:		Line 145:
	The irc_msg_who function in msgs.c in the IRC protocol plugin in libpurple 2.8.0 through 2.9.0 in Pidgin before 2.10.0 does not properly validate characters in nicknames, which allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted nickname that is not properly handled in a WHO response.		The irc_msg_who function in msgs.c in the IRC protocol plugin in libpurple 2.8.0 through 2.9.0 in Pidgin before 2.10.0 does not properly validate characters in nicknames, which allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted nickname that is not properly handled in a WHO response.

	=== mozilla-* ===		=== mozilla-firefox (various issues, all versions vulnerable) ===
	~~No specific CVE~~, ~~you know they are vulnerable~~ to ~~at leas tone thing~~.		From http://www.mozilla.org/security/known-vulnerabilities/firefox.html#firefox9, at LEAST:

			Fixed in Firefox 9:
			*MFSA 2011-58 Crash scaling <video> to extreme sizes
			*MFSA 2011-57 Crash when plugin removes itself on Mac OS X
			*MFSA 2011-56 Key detection without JavaScript via SVG animation
			*MFSA 2011-55 nsSVGValue out-of-bounds access
			*MFSA 2011-54 Potentially exploitable crash in the YARR regular expression library
			*MFSA 2011-53 Miscellaneous memory safety hazards (rv:9.0)