Posted by Vulnerability Lab on Jan 16
Document Title:
===============
CatBot v0.4.2 (PHP) – SQL Injection Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1408
Release Date:
=============
2015-01-15
Vulnerability Laboratory ID (VL-ID):
====================================
1408
Common Vulnerability Scoring System:
====================================
7.3
Product & Service Introduction:
===============================…
Release Date: January 16, 2015
Component Type: Third party extension. This extension is not a part of the TYPO3 default installation.
Affected Versions: 2.0.1
Vulnerability Type: Information Disclosure
Severity: Medium
Suggested CVSS v2.0: AV:N/AC:M/Au:N/C:P/I:N/A:N/E:F/RL:OF/RC:C
Problem Description: The extension discloses personal data of newsletter subscribers. Such data might be cached and indexed by search engines.
Solution: Updated version 2.0.2 is available from the TYPO3 extension manager and at http://typo3.org/extensions/repository/download/direct_mail_subscription/2.0.2/t3x/. If you are using a custom template, please consider the removal of name and email markers throughout the template!
Credits: Credits go to Ingo Müller and Stefan Neufeind who discovered the vulnerability.
General advice: Follow the recommendations that are given in the TYPO3 Security Guide. Please subscribe to the typo3-announce mailing list to receive future Security Bulletins via E-mail.
[ MDVSA-2015:024 ] libsndfile
[ MDVSA-2015:025 ] mpfr
[ MDVSA-2015:026 ] untrf
Alienvault OSSIM/USM Command Execution Vulnerability
Updated mpfr packages fix security vulnerability:
A buffer overflow was reported in mpfr. This is due to incorrect
GMP documentation for mpn_set_str about the size of a buffer
(CVE-2014-9474).
Updated libsndfile packages fix security vulnerabilities:
libsndfile contains multiple buffer-overflow vulnerabilities in
src/sd2.c because it fails to properly bounds-check user supplied
input, which may allow an attacker to execute arbitrary code or cause
a denial of service (CVE-2014-9496).
libsndfile contains a divide-by-zero error in src/file_io.c which
may allow an attacker to cause a denial of service.
Updated libvirt packages fix security vulnerability:
The qemuDomainMigratePerform and qemuDomainMigrateFinish2 functions
in qemu/qemu_driver.c in libvirt do not unlock the domain when an
ACL check fails, which allow local users to cause a denial of service
via unspecified vectors (CVE-2014-8136).