Monthly Archives: March 2015

Redhat

RHSA-2015:0696-1: Important: freetype security update

Red Hat Enterprise Linux: Updated freetype packages that fix multiple security issues are now
available for Red Hat Enterprise Linux 6 and 7.

Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
CVE-2014-9657, CVE-2014-9658, CVE-2014-9660, CVE-2014-9661, CVE-2014-9663, CVE-2014-9664, CVE-2014-9667, CVE-2014-9669, CVE-2014-9670, CVE-2014-9671, CVE-2014-9673, CVE-2014-9674, CVE-2014-9675

Redhat

RHSA-2015:0698-1: Important: rhevm-spice-client security, bug fix, and enhancement update

Red Hat Enterprise Linux: Updated rhevm-spice-client packages that fix multiple security issues,
several bugs, and add one enhancement are now available for Red Hat
Enterprise Virtualization Manager 3.

Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
CVE-2008-3520, CVE-2008-3522, CVE-2011-4516, CVE-2011-4517, CVE-2014-8137, CVE-2014-8138, CVE-2014-8157, CVE-2014-8158, CVE-2014-9029

Ubuntu

USN-2535-1: PHP vulnerabilities

Ubuntu Security Notice USN-2535-1

18th March, 2015

php5 vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

  • Ubuntu 14.10
  • Ubuntu 14.04 LTS
  • Ubuntu 12.04 LTS
  • Ubuntu 10.04 LTS

Summary

Several security issues were fixed in PHP.

Software description

  • php5
    – HTML-embedded scripting language interpreter

Details

Thomas Jarosch discovered that PHP incorrectly limited recursion in the
fileinfo extension. A remote attacker could possibly use this issue to
cause PHP to consume resources or crash, resulting in a denial of service.
(CVE-2014-8117)

S. Paraschoudis discovered that PHP incorrectly handled memory in the
enchant binding. A remote attacker could use this issue to cause PHP to
crash, resulting in a denial of service, or possibly execute arbitrary
code. (CVE-2014-9705)

Taoguang Chen discovered that PHP incorrectly handled unserializing
objects. A remote attacker could use this issue to cause PHP to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2015-0273)

It was discovered that PHP incorrectly handled memory in the phar
extension. A remote attacker could use this issue to cause PHP to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2015-2301)

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 14.10:
php5-cli

5.5.12+dfsg-2ubuntu4.3
php5-cgi

5.5.12+dfsg-2ubuntu4.3
libapache2-mod-php5

5.5.12+dfsg-2ubuntu4.3
php5-fpm

5.5.12+dfsg-2ubuntu4.3
php5-enchant

5.5.12+dfsg-2ubuntu4.3
Ubuntu 14.04 LTS:
php5-cli

5.5.9+dfsg-1ubuntu4.7
php5-cgi

5.5.9+dfsg-1ubuntu4.7
libapache2-mod-php5

5.5.9+dfsg-1ubuntu4.7
php5-fpm

5.5.9+dfsg-1ubuntu4.7
php5-enchant

5.5.9+dfsg-1ubuntu4.7
Ubuntu 12.04 LTS:
php5-cli

5.3.10-1ubuntu3.17
php5-cgi

5.3.10-1ubuntu3.17
libapache2-mod-php5

5.3.10-1ubuntu3.17
php5-fpm

5.3.10-1ubuntu3.17
php5-enchant

5.3.10-1ubuntu3.17
Ubuntu 10.04 LTS:
php5-cli

5.3.2-1ubuntu4.29
php5-cgi

5.3.2-1ubuntu4.29
libapache2-mod-php5

5.3.2-1ubuntu4.29
php5-enchant

5.3.2-1ubuntu4.29

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

In general, a standard system update will make all the necessary changes.

References

CVE-2014-8117,

CVE-2014-9705,

CVE-2015-0273,

CVE-2015-2301

Ubuntu

USN-2536-1: libXfont vulnerabilities

Ubuntu Security Notice USN-2536-1

18th March, 2015

libxfont vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

  • Ubuntu 14.10
  • Ubuntu 14.04 LTS
  • Ubuntu 12.04 LTS
  • Ubuntu 10.04 LTS

Summary

libXfont could be made to crash or run programs as an administrator
if it opened a specially crafted bdf font file.

Software description

  • libxfont
    – X11 font rasterisation library

Details

Ilja van Sprundel, Alan Coopersmith, and William Robinet discovered that
libXfont incorrectly handled malformed bdf fonts. A local attacker could
use this issue to cause libXfont to crash, or possibly execute arbitrary
code in order to gain privileges.

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 14.10:
libxfont1

1:1.4.99.901-1ubuntu0.1
Ubuntu 14.04 LTS:
libxfont1

1:1.4.7-1ubuntu0.2
Ubuntu 12.04 LTS:
libxfont1

1:1.4.4-1ubuntu0.3
Ubuntu 10.04 LTS:
libxfont1

1:1.4.1-1ubuntu0.4

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to reboot your computer to make
all the necessary changes.

References

CVE-2015-1802,

CVE-2015-1803,

CVE-2015-1804

NVD

CVE-2015-2149 (mybb)

Multiple cross-site scripting (XSS) vulnerabilities in the administrative backend in MyBB (aka MyBulletinBoard) before 1.8.4 allow remote authenticated users to inject arbitrary web script or HTML via the (1) MIME-type field in an add action in the config-attachment_types module to admin/index.php; (2) title or (3) short description field in an add action in the (a) config-mycode or (b) user-groups module to admin/index.php; (4) title field in an add action in the (c) forum-management or (d) tool-tasks module to admin/index.php; (5) name field in an add_set action in the style-templates module to admin/index.php; (6) title field in an add_template_group action in the style-templates module to admin/index.php; (7) name field in an add action in the config-post_icons module to admin/index.php; (8) “title to assign” field in an add action in the user-titles module to admin/index.php; or (9) username field in the config-banning module to admin/index.php.

NVD

CVE-2015-2332 (mybb)

Cross-site scripting (XSS) vulnerability in member.php in MyBB (aka MyBulletinBoard) before 1.8.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

NVD

CVE-2015-2333 (mybb)

Cross-site scripting (XSS) vulnerability in the MyCode editor in MyBB (aka MyBulletinBoard) before 1.8.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

NVD

CVE-2015-2334 (mybb)

Cross-site request forgery (CSRF) vulnerability in the Admin Control Panel (ACP) login in MyBB (aka MyBulletinBoard) before 1.8.4 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.