First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 200110
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Samuli Suominen <ssuominen@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 200110 depends on: Show dependency tree
Bug 200110 blocks: 183776

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2007-11-23 19:26 0000 
Important for getting rid of howl, this adds native avahi support.

amd64 stable

------- Comment #1 From Dawid Węgliński 2007-11-24 12:12:42 0000 ------- 
x86 stable

------- Comment #2 From Brent Baude 2007-11-25 16:17:25 0000 ------- 
ppc stable

------- Comment #3 From Raúl Porcel 2007-11-29 18:02:47 0000 ------- 
sparc stable

------- Comment #4 From Samuli Suominen 2007-12-10 17:32:10 0000 ------- 
vapier, any chance of doing this.. ? it's blocking phasing out of howl,
unfortunately otherwise it's getting lastrited and keywords are lost.

------- Comment #5 From Alexandre Rostovtsev 2007-12-15 12:16:50 0000 ------- 
Versions of mt-daapd prior to 0.2.4.1 are vulnerable.
See CVE-2007-5824 (dos) and CVE-2007-5825 (remote code execution)

Therefore, mt-daapd-0.2.4 must be patched or removed from the tree.

------- Comment #6 From Samuli Suominen 2007-12-15 13:48:48 0000 ------- 
(In reply to comment #5)
> Versions of mt-daapd prior to 0.2.4.1 are vulnerable.
> See CVE-2007-5824 (dos) and CVE-2007-5825 (remote code execution)
> 
> Therefore, mt-daapd-0.2.4 must be patched or removed from the tree.
> 

Security, was there something needed to be done? Only arm and sh left here.

------- Comment #7 From Robert Buchholz 2007-12-18 21:04:32 0000 ------- 
Thanks for letting us know.

CVE-2007-5824:
         webserver.c in mt-dappd in Firefly Media Server 0.2.4 and earlier
         allows remote attackers to cause a denial of service (NULL dereference
         and daemon crash) via a stats method action to /xml-rpc with (1) an
         empty Authorization header line, which triggers a crash in the
         ws_decodepassword function; or (2) a header line without a ':'
         character, which triggers a crash in the ws_getheaders function.
CVE-2007-5825:
         Format string vulnerability in the ws_addarg function in webserver.c
         in mt-dappd in Firefly Media Server 0.2.4 and earlier allows remote
         attackers to execute arbitrary code via a stats method action to
         /xml-rpc with format string specifiers in the (1) username or (2)
         password portion of base64-encoded data on the "Authorization: Basic"
         HTTP header line.

------- Comment #8 From Robert Buchholz 2007-12-18 21:06:45 0000 ------- 
GLSA request filed.

This slipped through our grid because the vulnerabilities were announced in
"FireFly Media Server". Sound, could you please edit the ebuilds to contain the
new name in the ebuild description, so it can be found easier. Thank you!

------- Comment #9 From Robert Buchholz 2007-12-29 13:58:22 0000 ------- 
GLSA 200712-18, thanks everyone.
First Last Prev Next    No search results available      Search page      Enter new bug