Index: vuln.xml =================================================================== RCS file: /home/pcvs/ports/security/vuxml/vuln.xml,v retrieving revision 1.2142 diff -u -r1.2142 vuln.xml --- vuln.xml 19 Apr 2010 19:06:22 -0000 1.2142 +++ vuln.xml 20 Apr 2010 15:08:57 -0000 @@ -34,6 +34,167 @@ --> + + e107 -- code execution and XSS vulnerabilities + + + e107 + 0.7.20 + + + + +

Secunia Research reported two vulnerabilities in e107:

+

The first problem affects installations that have the + Content Manager plugin enabled. This plugin does not + sanitize the "content_heading" parameter correctly and + is therefore vulnerable to a cross site scripting attack.

+

The second vulnerability is related to the avatar upload + functionality. Images containing PHP code can be uploaded + and executed.

+ + + + 39540 + CVE-2010-0996 + CVE-2010-0997 + ports/145885 + http://e107.org/comment.php?comment.news.864 + http://secunia.com/secunia_research/2010-43/ + http://secunia.com/secunia_research/2010-44/ + http://xforce.iss.net/xforce/xfdb/57932 + + + 2010-04-15 + 2010-04-20 + + + + + fetchmail -- denial of service vulnerability + + + fetchmail + + 4.6.3 + 6.3.16 + + + + + +

Fetchmail developer Matthias Andree reported a vulnerability + that allows remote attackers to crash the application + when it is runs in verbose mode.

+
+

Fetchmail before release 6.3.17 did not properly + sanitize external input (mail headers and UID). When a + multi-character locale (such as UTF-8) was in use, this + could cause memory exhaustion and thus a denial of + service.

+
+ + + + CVE-2010-1167 + ports/145857 + http://gitorious.org/fetchmail/fetchmail/commit/ec06293 + http://seclists.org/oss-sec/2010/q2/76 + + + 2010-04-18 + 2010-04-20 + + + + + pidgin -- multiple remote denial of service vulnerabilities + + + pidgin + 2.6.6 + + + libpurple + 2.6.6 + + + + +

Three denial of service vulnerabilities where found in + pidgin and allow remote attackers to crash the application. + The developers summarized these problems as follows:

+
+

Pidgin can become unresponsive when displaying large + numbers of smileys

+
+
+

Certain nicknames in group chat rooms can trigger a + crash in Finch

+
+
+

Failure to validate all fields of an incoming message + can trigger a crash

+
+ + + + 38294 + CVE-2010-0277 + CVE-2010-0420 + CVE-2010-0423 + http://pidgin.im/news/security/?id=43 + http://pidgin.im/news/security/?id=44 + http://pidgin.im/news/security/?id=45 + + + 2010-02-18 + 2010-04-20 + + + + + png -- libpng decompression denial of service + + + png + + 1.2.43 + 1.4.1 + + + + + +

A vulnerability in libpng can result in denial of service + conditions when a remote attacker tricks a victim to open + a specially-crafted PNG file.

+

The PNG project describes the problem in an advisory:

+
+

Because of the efficient compression method used in + Portable Network Graphics (PNG) files, a small PNG file + can expand tremendously, acting as a "decompression + bomb".

+

Malformed PNG chunks can consume a large amount of CPU + and wall-clock time and large amounts of memory, up to + all memory available on a system

+
+ + + + 38478 + 576029 + CVE-2010-0205 + http://libpng.sourceforge.net/ADVISORY-1.4.1.html + http://secunia.com/advisories/38774 + http://xforce.iss.net/xforce/xfdb/56661 + + + 2010-02-27 + 2010-04-20 + + + curl -- libcurl buffer overflow vulnerability