Resolved Bugs
1221713 – [abrt] freecad: SoType::isDerivedFrom(): FreeCAD killed by SIGABRT
1154608 – freecad: potential remote code execution when opening DXF files
1154609 – freecad: potential remote code execution when opening DXF files [fedora-20]<br
Rolled back 0.15 update for f20 & f21 due to library conflict.
Also addresses a security vulnerability.
Monthly Archives: May 2015
Fedora 21 Security Update: ipsec-tools-0.8.2-1.fc21
Resolved Bugs
1223420 – ipsec-tools: NULL pointer dereference in racoon/gssapi.c [fedora-all]
1154906 – Please upgrade to ipsec-tools-0.8.2 to fix port 4500 vs 500 isakmp initiator issue
952413 – Enhancement request: Include support for Calling-Station-Id attribute for xauth RADIUS requests – PATCH
1223419 – CVE-2015-4047 ipsec-tools: NULL pointer dereference in racoon/gssapi.c<br
Upgraded to 0.8.2, fix for CVE-2015-4047, support for Calling-Station-Id
Fedora 21 Security Update: thermostat-1.0.6-2.fc21
Fedora 22 Security Update: thermostat-1.2.2-7.fc22
hwclock(8) SUID privilege escalation
Posted by up201407890 on May 27
Hello,
During a recent assessment I have stumbled across a system which had
hwclock(8) setuid root
hwclock is a part of util-linux, all versions affected
$ man hwclock | sed -n ‘223,231p’
Users access and setuid
Sometimes, you need to install hwclock setuid root. If you
want users other than the superuser to be able to display the clock
value using the direct ISA I/O
method, install it setuid root. If you have the…
ClearPass Policy Manager Stored XSS
Posted by Cristiano Maruti on May 27
===============================================================================
title: ClearPass Policy Manager Stored XSS
case id: CM-2014-01
product: Aruba ClearPass Policy Manager
vulnerability type: Stored cross-site script
severity: Medium
found: 2014-11-24
by: Cristiano Maruti (@cmaruti)…
Thycotic Password Manager Secret Server iOS Application – MITM SSL Certificate Vulnerability
Posted by David Coomber on May 27
Thycotic Password Manager Secret Server iOS Application – MITM SSL
Certificate Vulnerability
RootedCON 2015 videos published
Posted by omarbv on May 27
Hello,
Finally we can share with you most of the videos of the last RootedCON
talks, celebrated in Spain (Madrid) on March as always 🙂
Some of the talks are:
– Infection in BIOS, UEFI and derivatives
– Turia: Development & Operations
– How I met your eWallet
– Can I play with madness
– Bypassing DRM Protections at CDN
– And last but not least important…
– Demystifying Apple Pay
– On Relaying NFC
(and much more)…
CVE-2015-4062, CVE-2015-4063: Multiple vulnerabilities in WordPress plugin "NewStatPress"
Posted by Adrián M . F . on May 27
# Title: Multiple vulnerabilities in WordPress plugin “NewStatPress”
# Author: Adrián M. F. – adrimf85[at]gmail[dot]com
# Date: 2015-05-25
# Vendor Homepage: https://wordpress.org/plugins/newstatpress/
# Active installs: 20,000+
# Vulnerable version: 0.9.8
# Fixed version: 0.9.9
# CVE: CVE-2015-4062, CVE-2015-4063
Vulnerabilities (2)
=====================
(1) Authenticated SQLi [CWE-89] (CVE-2015-4062)…
CVE-2015-4064, CVE-2015-4065: Multiple vulnerabilities in WordPress plugin "WordPress Landing Pages"
Posted by Adrián M . F . on May 27
# Title: Multiple vulnerabilities in WordPress plugin “WordPress Landing
Pages”
# Author: Adrián M. F. – adrimf85[at]gmail[dot]com
# Date: 2015-05-25
# Vendor Homepage: https://wordpress.org/plugins/landing-pages/
# Active installs: 20,000+
# Vulnerable version: 1.8.4
# Fixed version: 1.8.5
# CVE: CVE-2015-4064, CVE-2015-4065
Vulnerabilities (2)
=====================
(1) Authenticated SQLi [CWE-89] (CVE-2015-4064)…