Summary: | <dev-libs/xmlsec-1.2.17: Arbitrary file creation or overwrite vulnerability (CVE-2011-1425) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Tim Sammut (RETIRED) <underling> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | alexanderyt, c1pher, dragonheart |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://git.gnome.org/browse/xmlsec/commit/?id=35eaacde6093d6711339754fc2146341b8b9f5fa | ||
Whiteboard: | B2 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Tim Sammut (RETIRED)
2011-03-30 22:21:15 UTC
Hi, Daniel and Dane. Given the short time line before this is planned to go public, it would be fantastic if we could either: - Create an ebuild for 1.2.16-r1 including a patch based on the commit at $URL, or - Create an ebuild for 1.2.17, that we can test after it is released. If you are able to do this before this issue is made public, please attach the ebuild to this bug *without* committing to CVS. Thank you. This now public. http://www.aleksey.com/xmlsec/download.html Stabilize dev-libs/xmlsec-1.2.17. Tested on x86, looks good over here. x86 stable. Thanks Andreas. amd64 ok amd64 done, thanks Agostino Thanks, folks. GLSA request filed. security: Any reason to keep this open? CVE-2011-1425 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1425): xslt.c in XML Security Library (aka xmlsec) before 1.2.17, as used in WebKit and other products, when XSLT is enabled, allows remote attackers to create or overwrite arbitrary files via vectors involving the libxslt output extension and a ds:Transform element during signature verification. This issue was resolved and addressed in GLSA 201412-09 at http://security.gentoo.org/glsa/glsa-201412-09.xml by GLSA coordinator Sean Amoss (ackle). |