Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 335063 (CVE-2010-2539) - <sci-geosciences/mapserver-5.6.6: Multiple Vulnerabilities (CVE-2010-{2539,2540})
Summary: <sci-geosciences/mapserver-5.6.6: Multiple Vulnerabilities (CVE-2010-{2539,25...
Status: RESOLVED FIXED
Alias: CVE-2010-2539
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High trivial (vote)
Assignee: Gentoo Security
URL: http://lists.osgeo.org/pipermail/maps...
Whiteboard: ~1 [noglsa]
Keywords:
Depends on: 314109
Blocks:
  Show dependency tree
 
Reported: 2010-08-28 21:30 UTC by Tim Sammut (RETIRED)
Modified: 2011-05-03 15:59 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Tim Sammut (RETIRED) gentoo-dev 2010-08-28 21:30:57 UTC
From $url:

IMPORTANT SECURITY FIXES:

- Disabled some insecure (and potentially exploitable) mapserv command-line
  debug arguments (#3485). The --enable-cgi-cl-debug-args configure switch
  can be used to re-enable them for devs who really cannot get away without
  them and who understand the potential security risk (not recommended for
  production servers or those who don't understand the security
  implications).

- Fixed possible buffer overflow in msTmpFile() (#3484)
Comment 1 Stefan Behte (RETIRED) gentoo-dev Security 2010-09-01 20:05:56 UTC
CVE-2010-2539 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2539):
  Buffer overflow in the msTmpFile function in maputil.c in mapserv in
  MapServer before 4.10.6 and 5.x before 5.6.4 allows local users to
  cause a denial of service via vectors involving names of temporary
  files.

CVE-2010-2540 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2540):
  mapserv.c in mapserv in MapServer before 4.10.6 and 5.x before 5.6.4
  does not properly restrict the use of CGI command-line arguments that
  were intended for debugging, which allows remote attackers to have an
  unspecified impact via crafted arguments.

Comment 2 Tomáš Chvátal (RETIRED) gentoo-dev 2011-05-03 13:01:35 UTC
I added 6.0_rc1 and 5.6.6 to cvs. All older were dropped.

The older releases were never stable.

@security: your turn guys, and sorry it took so long.
Comment 3 Tim Sammut (RETIRED) gentoo-dev 2011-05-03 15:59:13 UTC
(In reply to comment #2)
> I added 6.0_rc1 and 5.6.6 to cvs. All older were dropped.
> 
> The older releases were never stable.
> 

Great, thank you. Closing noglsa since there were no stable ebuilds.