Packet Storm ≈ Advisory Files

Packet Storm – Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers

Apple Security Advisory 2020-09-16-5

18 September 2020, 7:11 pm

Apple Security Advisory 2020-09-16-5 – Xcode 12.0 is now available and addresses a code execution vulnerability.

Apple Security Advisory 2020-09-16-4

18 September 2020, 7:11 pm

Apple Security Advisory 2020-09-16-4 – watchOS 7.0 is now available and addresses cross site scripting vulnerabilities.

Apple Security Advisory 2020-09-16-3

18 September 2020, 7:10 pm

Apple Security Advisory 2020-09-16-3 – Safari 14.0 is now available and addresses code execution, cross site scripting, out of bounds write, and use-after-free vulnerabilities.

Apple Security Advisory 2020-09-16-2

18 September 2020, 7:10 pm

Apple Security Advisory 2020-09-16-2 – tvOS 14.0 is now available and addresses cross site scripting vulnerabilities.

Ubuntu Security Notice USN-4519-1

18 September 2020, 5:15 pm

Ubuntu Security Notice 4519-1 – Ratchanan Srirattanamet discovered that an Ubuntu-specific patch caused PulseAudio to incorrectly handle memory under certain error conditions in the Bluez 5 module. An attacker could use this issue to cause PulseAudio to crash, resulting in a denial of service, or possibly execute arbitrary code.

Apple Security Advisory 2020-09-16-1

18 September 2020, 5:15 pm

Apple Security Advisory 2020-09-16-1 – iOS 14.0 and iPadOS 14.0 are now available and address code execution, cross site scripting, out of bounds read, and out of bounds write vulnerabilities.

Ubuntu Security Notice USN-4517-1

18 September 2020, 5:09 pm

Ubuntu Security Notice 4517-1 – It was discovered that Email-Address-List does not properly parse email addresses during email-ingestion. A remote attacker could use this issue to cause an algorithmic complexity attack, resulting in a denial of service.

Ubuntu Security Notice USN-4518-1

17 September 2020, 9:25 pm

Ubuntu Security Notice 4518-1 – Matthias Gerstner discovered that xawtv incorrectly handled opening files. A local attacker could possibly use this issue to open and write to arbitrary files and escalate privileges.

Ubuntu Security Notice USN-4516-1

17 September 2020, 9:25 pm

Ubuntu Security Notice 4516-1 – It was discovered that GnuPG signatures could be forged when the SHA-1 algorithm is being used. This update removes validating signatures based on SHA-1 that were generated after 2019-01-19. In environments where this is still required, a new option –allow-weak-key-signatures can be used to revert this behaviour.

Ubuntu Security Notice USN-4515-1

17 September 2020, 9:25 pm

Ubuntu Security Notice 4515-1 – Antonio Norales discovered that Pure-FTPd incorrectly handled directory aliases. An attacker could possibly use this issue to access sensitive information.

Ubuntu Security Notice USN-4514-1

17 September 2020, 9:25 pm

Ubuntu Security Notice 4514-1 – It was discovered that libproxy incorrectly handled certain PAC files. An attacker could possibly use this issue to cause a denial of service.

Ubuntu Security Notice USN-4513-1

17 September 2020, 9:25 pm

Ubuntu Security Notice 4513-1 – Dileep Kumar Jallepalli discovered that apng2gif incorrectly handled loading APNG files. An attacker could exploit this with a crafted APNG file to access sensitive information.
Red Hat Security Advisory 2020-3779-01 – Red Hat Data Grid is a distributed, in-memory, NoSQL datastore based on the Infinispan project. This release of Red Hat Data Grid 7.3.7 serves as a replacement for Red Hat Data Grid 7.3.6 and includes bug fixes and enhancements, which are described in the Release Notes, linked to in the References section of this erratum. Issues addressed include XML injection, bypass, and improper authorization vulnerabilities.

Ubuntu Security Notice USN-4510-2

17 September 2020, 2:07 pm

Ubuntu Security Notice 4510-2 – USN-4510-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 14.04 ESM. Tom Tervoort discovered that the Netlogon protocol implemented by Samba incorrectly handled the authentication scheme. A remote attacker could use this issue to forge an authentication token and steal the credentials of the domain admin. Various other issues were also addressed.

Ubuntu Security Notice USN-4510-1

17 September 2020, 2:07 pm

Ubuntu Security Notice 4510-1 – Tom Tervoort discovered that the Netlogon protocol implemented by Samba incorrectly handled the authentication scheme. A remote attacker could use this issue to forge an authentication token and steal the credentials of the domain admin. This update fixes the issue by changing the “server schannel” setting to default to “yes”, instead of “auto”, which will force a secure netlogon channel. This may result in compatibility issues with older devices. A future update may allow a finer-grained control over this setting. Various other issues were also addressed.

Ubuntu Security Notice USN-4511-1

17 September 2020, 2:07 pm

Ubuntu Security Notice 4511-1 – Ziming Zhang, Xiao Wei, Gonglei Arei, and Yanyu Zhang discovered that QEMU incorrectly handled certain USB packets. An attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service, or possibly execute arbitrary code on the host. In the default installation, when QEMU is used with libvirt, attackers would be isolated by the libvirt AppArmor profile.

Ubuntu Security Notice USN-4512-1

17 September 2020, 2:07 pm

Ubuntu Security Notice 4512-1 – It was discovered that the umount bash completion script shipped in util-linux incorrectly handled certain mountpoints. If a local attacker were able to create arbitrary mountpoints, another user could be tricked into executing arbitrary code when attempting to run the umount command with bash completion.

Ubuntu Security Notice USN-4509-1

17 September 2020, 2:07 pm

Ubuntu Security Notice 4509-1 – It was discovered that Perl DBI module incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. It was discovered that Perl DBI module incorrectly handled certain files. An attacker could possibly use this issue to expose sensitive information.

Ubuntu Security Notice USN-4508-1

16 September 2020, 11:39 pm

Ubuntu Security Notice 4508-1 – It was discovered that StoreBackup did not properly manage lock files. A local attacker could use this issue to cause a denial of service or escalate privileges and run arbitrary code.

Ubuntu Security Notice USN-4507-1

16 September 2020, 9:30 pm

Ubuntu Security Notice 4507-1 – It was discovered that ncmpc incorrectly handled long chat messages. A remote attacker could possibly exploit this with a crafted chat message, causing ncmpc to crash, resulting in a denial of service.

Ubuntu Security Notice USN-4506-1

16 September 2020, 8:05 pm

Ubuntu Security Notice 4506-1 – It was discovered that MCabber does not properly manage roster pushes. An attacker could possibly use this issue to remotely perform man-in-the-middle attacks.

Ubuntu Security Notice USN-4505-1

16 September 2020, 8:05 pm

Ubuntu Security Notice 4505-1 – Elar Lang discovered that PHPMailer did not properly escape double quote characters in filenames. A remote attacker could possibly exploit this with a crafted filename to bypass attachment filters that are based on matching filename extensions.

Ubuntu Security Notice USN-4504-1

16 September 2020, 8:05 pm

Ubuntu Security Notice 4504-1 – Robert Merget, Marcus Brinkmann, Nimrod Aviram, and Juraj Somorovsky discovered that certain Diffie-Hellman ciphersuites in the TLS specification and implemented by OpenSSL contained a flaw. A remote attacker could possibly use this issue to eavesdrop on encrypted communications. This was fixed in this update by removing the insecure ciphersuites from OpenSSL. Cesar Pereida García, Sohaib ul Hassan, Nicola Tuveri, Iaroslav Gridin, Alejandro Cabrera Aldaya, and Billy Brumley discovered that OpenSSL incorrectly handled ECDSA signatures. An attacker could possibly use this issue to perform a timing side-channel attack and recover private ECDSA keys. This issue only affected Ubuntu 18.04 LTS. Various other issues were also addressed.

Ubuntu Security Notice USN-4503-1

16 September 2020, 3:12 pm

Ubuntu Security Notice 4503-1 – It was discovered that Perl DBI module incorrectly handled certain calls. An attacker could possibly use this issue to execute arbitrary code.

Ubuntu Security Notice USN-4502-1

16 September 2020, 3:11 pm

Ubuntu Security Notice 4502-1 – It was discovered that websocket-extensions does not properly parse special headers. A remote attacker could use this issue to cause regex backtracking, resulting in a denial of service.