Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 300178 (CVE-2009-4144) - <gnome-extra/nm-applet-0.8 CA DoS/Information disclosure (CVE-2009-{4144,4145})
Summary: <gnome-extra/nm-applet-0.8 CA DoS/Information disclosure (CVE-2009-{4144,4145})
Status: RESOLVED FIXED
Alias: CVE-2009-4144
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High minor
Assignee: Gentoo Security
URL: https://bugzilla.redhat.com/show_bug....
Whiteboard: B3 [noglsa]
Keywords:
Depends on:
Blocks:
 
Reported: 2010-01-08 16:19 UTC by Alex Legler (RETIRED)
Modified: 2012-12-16 22:01 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Alex Legler (RETIRED) archtester gentoo-dev Security 2010-01-08 16:19:12 UTC
CVE-2009-4144 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-4144):
  NetworkManager (NM) 0.7.2 does not ensure that the configured
  Certification Authority (CA) certificate file for a (1) WPA
  Enterprise or (2) 802.1x network remains present upon a connection
  attempt, which might allow remote attackers to obtain sensitive
  information or cause a denial of service (connectivity disruption) by
  spoofing the identity of a wireless network.
Comment 1 Alex Legler (RETIRED) archtester gentoo-dev Security 2010-01-08 17:45:26 UTC
CVE-2009-4145 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-4145):
  nm-connection-editor in NetworkManager (NM) 0.7.x exports connection
  objects over D-Bus upon actions in the connection editor GUI, which
  allows local users to obtain sensitive information by reading D-Bus
  signals, as demonstrated by using dbus-monitor to discover the
  password for the WiFi network.

Comment 2 Alexandre Rostovtsev (RETIRED) gentoo-dev 2012-12-11 21:15:55 UTC
The vulnerability was in gnome-extra/nm-applet, not net-misc/networkmanager.

As far as I can tell, it was fixed upstream before the 0.8 release.

The oldest version of nm-applet in portage is 0.8.4.

So I think this bug can be closed.
Comment 4 Alexandre Rostovtsev (RETIRED) gentoo-dev 2012-12-11 22:19:51 UTC
Just to give specific version numbers: this was fixed upstream in nm-applet-0.7.3 (which we never had in portage). The first fixed version in portage was I think either nm-applet-0.7.999 or 0.8.
Comment 5 Sean Amoss (RETIRED) gentoo-dev Security 2012-12-12 00:51:15 UTC
Thanks for looking into this, Alexandre.

GLSA vote: no.
Comment 6 Stefan Behte (RETIRED) gentoo-dev Security 2012-12-16 22:01:23 UTC
No. Closing noglsa.