OSS Sec Archive by Thread 2019/01-Jan

• Date Index

• Re: [oss-security] Asserts considered harmful (or GMP spills its sensitive information), Matthew Fernandez
  • [oss-security] Disabling ptrace (was Re: [oss-security] Asserts considered harmful (or GMP spills its sensitive information)), Niels Möller - Tue Jan 01 11:27:07 GMT 2019
    • Re: [oss-security] Disabling ptrace, Jakub Wilk - Wed Jan 02 10:09:47 GMT 2019
      • Re: [oss-security] Disabling ptrace, Niels Möller - Wed Jan 02 10:21:27 GMT 2019
  • <Possible follow-ups>
  • Re: [oss-security] Asserts considered harmful (or GMP spills its sensitive information), halfdog - Tue Jan 01 13:12:04 GMT 2019
• [oss-security] wget / chromium: URL metadata and potential password leaks via extended filesystem attributes, Hanno Böck
  • Re: [oss-security] wget / chromium: URL metadata and potential password leaks via extended filesystem attributes, Amos Jeffries - Wed Jan 02 07:49:08 GMT 2019
  • Re: [oss-security] wget / chromium: URL metadata and potential password leaks via extended filesystem attributes, Hanno Böck - Thu Jan 03 10:34:22 GMT 2019
• [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Niels Möller
  • Re: [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Simon McVittie - Tue Jan 01 12:41:10 GMT 2019
    • Re: [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), halfdog - Tue Jan 01 13:52:38 GMT 2019
    • Re: [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Jeffrey Walton - Wed Jan 02 21:53:16 GMT 2019
      • Re: [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), halfdog - Thu Jan 03 07:42:01 GMT 2019
  • <Possible follow-ups>
  • [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Vincent Lefevre - Tue Jan 01 11:20:42 GMT 2019
    • [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Niels Möller - Tue Jan 01 11:44:32 GMT 2019
      • [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Torbjörn Granlund - Tue Jan 01 16:18:59 GMT 2019
      • [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Jeffrey Walton - Tue Jan 01 16:45:39 GMT 2019
      • [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Jeffrey Walton - Tue Jan 01 16:49:02 GMT 2019
      • [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Niels Möller - Sun Jan 06 10:31:27 GMT 2019
      • [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Jeffrey Walton - Sun Jan 06 15:39:50 GMT 2019
  • [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Marco Bodrato - Thu Jan 03 19:55:43 GMT 2019
    • [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Jeffrey Walton - Thu Jan 03 20:42:09 GMT 2019
      • [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Torbjörn Granlund - Thu Jan 03 21:46:18 GMT 2019
      • [oss-security] Re: Asserts considered harmful (or GMP spills its sensitive information), Jeffrey Walton - Thu Jan 03 22:44:17 GMT 2019
• [oss-security] aria2 leaks passwords for HTTP based authentication, Dhiraj Mishra
• [oss-security] Django security releases issued: 2.1.5, 2.0.10, and 1.11.18, Tim Graham
• [oss-security] [SECURITY] New security advisory for CVE-2018-11788 released for Apache Karaf, Jean-Baptiste Onofré
• [oss-security] New pagecache based sidechannel attack published, Marcus Meissner
  • Re: [oss-security] New pagecache based sidechannel attack published, Marcus Meissner - Mon Jan 07 16:36:08 GMT 2019
• [oss-security] [SECURITY] CVE-2018-1320 Announcement, James E. King III
• [oss-security] [SECURITY] CVE-2018-11798 Announcement, James E. King III
• [oss-security] Sandbox bypass in multiple Jenkins plugins, Daniel Beck
  • Re: [oss-security] Sandbox bypass in multiple Jenkins plugins, Daniel Beck - Wed Jan 23 10:18:20 GMT 2019
• [oss-security] Linux Kernel 4.20(21) deadlock vulnerability., Entropy Moe
  • [oss-security] Re: Linux Kernel 4.20(21) deadlock vulnerability., Eric Dumazet - Tue Jan 08 15:14:11 GMT 2019
    • Re: [oss-security] Re: Linux Kernel 4.20(21) deadlock vulnerability., Michael Ellerman - Wed Jan 09 01:04:41 GMT 2019
  • [oss-security] Re: Linux Kernel 4.20(21) deadlock vulnerability., Greg KH - Tue Jan 08 15:26:27 GMT 2019
    • [oss-security] Re: Linux Kernel 4.20(21) deadlock vulnerability., Entropy Moe - Tue Jan 08 15:34:24 GMT 2019
      • [oss-security] Re: Linux Kernel 4.20(21) deadlock vulnerability., Greg KH - Tue Jan 08 15:38:35 GMT 2019
      • [oss-security] Re: Linux Kernel 4.20(21) deadlock vulnerability., Entropy Moe - Tue Jan 08 15:51:18 GMT 2019
• [oss-security] KASAN stack out of bound bug, Entropy Moe
  • [oss-security] Re: KASAN stack out of bound bug, Entropy Moe - Tue Jan 08 15:14:04 GMT 2019
  • [oss-security] Re: KASAN stack out of bound bug, Greg KH - Tue Jan 08 15:27:58 GMT 2019
    • [oss-security] Re: KASAN stack out of bound bug, Entropy Moe - Tue Jan 08 15:28:32 GMT 2019
      • [oss-security] Re: KASAN stack out of bound bug, Eric Dumazet - Tue Jan 08 15:33:42 GMT 2019
      • [oss-security] Re: KASAN stack out of bound bug, Entropy Moe - Tue Jan 08 15:35:01 GMT 2019
• [oss-security] Xen Security Advisory 275 v3 (CVE-2018-19961,CVE-2018-19962) - insufficient TLB flushing / improper large page mappings with AMD IOMMUs, Xen . org security team
• [oss-security] Xen Security Advisory 276 v3 (CVE-2018-19963) - resource accounting issues in x86 IOREQ server handling, Xen . org security team
• [oss-security] Xen Security Advisory 277 v3 (CVE-2018-19964) - x86: incorrect error handling for guest p2m page removals, Xen . org security team
• [oss-security] Xen Security Advisory 279 v3 (CVE-2018-19965) - x86: DoS from attempting to use INVPCID with a non-canonical addresses, Xen . org security team
• [oss-security] Xen Security Advisory 280 v3 (CVE-2018-19966) - Fix for XSA-240 conflicts with shadow paging, Xen . org security team
• [oss-security] Xen Security Advisory 282 v2 (CVE-2018-19967) - guest use of HLE constructs may lock up host, Xen . org security team
• [oss-security] RCE, CSRF and Information leak vulnerabilities against Airflow <= 1.8.2 (CVE-2017-15720, CVE-2017-17835, CVE-2017-17836), Ash Berlin-Taylor
• [oss-security] CVE-2018-20245: Apache Airflow LDAP auth backend did not validate SSL certificate for <= 1.10.0, Ash Berlin-Taylor
• [oss-security] Fastbin double free issue in MP4v2 2.0.0, Purushottam Choudhary
• [oss-security] System Down: A systemd-journald exploit, Qualys Security Advisory
• [oss-security] Irssi 1.1.2: CVE-2019-5882, Ailin Nemui
• [oss-security] X41 D-Sec GmbH Security Advisory X41-2018-009: ReDoS Vulnerability in UA-Parser, X41 D-Sec GmbH Advisories
• [oss-security] [CVE-2018-17198] Server-side Request Forgery (SSRF) and File Enumeration vulnerability in Apache Roller, Dave
• [oss-security] Linux kernel: Bluetooth: two remote infoleaks (CVE-2019-3459, CVE-2019-3460), Solar Designer
  • Re: [oss-security] Linux kernel: Bluetooth: two remote infoleaks (CVE-2019-3459, CVE-2019-3460), Michael Ellerman - Sun Jan 13 23:50:53 GMT 2019
• [oss-security] Memory leak in libiec61850 protocol, Dhiraj Mishra
• [oss-security] Memory leak in libiec61850, Dhiraj Mishra
• [oss-security] NULL pointer dereference in lib60870 protocol, Dhiraj Mishra
• [oss-security] SEGV in libIEC61850 protocol, Dhiraj Mishra
• [oss-security] CVE-2018-16886 etcd: Improper Authentication in auth/store.go:AuthInfoFromTLS() via gRPC-gateway, Paul Harvey
• [oss-security] SCP client multiple vulnerabilities, Harry Sintonen
• [oss-security] Statistics for distros lists updated for 2018Q4, Kristian Fiskerstrand
• [oss-security] CVE-2018-11790: Apache OpenOffice: Arithmetic overflow and wrap around during string length calculation, Peter Kovacs
• [oss-security] Heap based buffer overflow in wolfSSL, Dhiraj Mishra
  • Re: [oss-security] Heap based buffer overflow in wolfSSL, Alexander Potapenko - Wed Jan 16 15:00:49 GMT 2019
• [oss-security] Multiple vulnerabilities in Jenkins, Daniel Beck
  • Re: [oss-security] Multiple vulnerabilities in Jenkins, Daniel Beck - Wed Jan 23 10:17:46 GMT 2019
  • <Possible follow-ups>
  • Re: [oss-security] Multiple vulnerabilities in Jenkins, Daniel Beck - Wed Jan 23 10:21:11 GMT 2019
• [oss-security] Unfixed FreeBSD uninitialized memory disclosures, Vlad Tsyrklevich
• [oss-security] GattLib 0.2 has a stack-based buffer - CVE-2019-6498, Dhiraj Mishra
• [oss-security] Apache web server use after free bugs (unfixed), Hanno Böck
  • Re: [oss-security] Apache web server use after free bugs (unfixed), Florian Weimer - Mon Jan 21 08:23:22 GMT 2019
    • Re: [oss-security] Apache web server use after free bugs (unfixed), Craig Young - Mon Jan 21 12:29:47 GMT 2019
• [oss-security] Xen Security Advisory 289 v2 - Spectre V1 gadgets exploitable with L1TF, Xen . org security team
• [oss-security] PowerDNS Security Advisories 2011-01 and 2019-02, Remi Gacogne
• [oss-security] Xen Security Advisory 289 v3 - Cache-load gadgets exploitable with L1TF, Xen . org security team
• Re: [oss-security] Re: ghostscript: 1Policy operator gives access to .forceput CVE-2018-18284, Thomas Jarosch
• [oss-security] CVE-2018-17189: mod_http2, DoS via slow, unneeded request bodies, Daniel Ruggeri
• [oss-security] CVE-2018-17199: mod_session_cookie does not respect expiry time, Daniel Ruggeri
• [oss-security] CVE-2019-0190: mod_ssl 2.4.37 remote DoS when used with OpenSSL 1.1.1, Daniel Ruggeri
• [oss-security] [CVE-2018-11803] Apache Subversion Denial of Service Vulnerability, Troy Curtis
• [oss-security] ghostscript: subroutines within pseudo-operators must themselves be pseudo-operators, Tavis Ormandy
• [oss-security] Linux Kernel: Missing access_ok() checks in IOCTL function (gpu/drm/i915 Driver), Timothy Michaud
  • Re: [oss-security] Linux Kernel: Missing access_ok() checks in IOCTL function (gpu/drm/i915 Driver), Yves-Alexis Perez - Thu Jan 24 09:30:28 GMT 2019
• [oss-security] CVE-2018-1340: Apache Guacamole: Secure flag missing from session cookie, Mike Jumper
• [oss-security] CVE-2018-1296: Apache Hadoop HDFS Permissive listXAttr Authorization, Akira Ajisaka
• [oss-security] CVE-2019-6501 QEMU: scsi-generic: possible OOB access while handling inquiry request, P J P
• [oss-security] CVE-2019-6778 QEMU: slirp: heap buffer overflow in tcp_emu(), P J P
• [oss-security] CVE-2018-16880 Linux kernel: oob-write in drivers/vhost/net.c:get_rx_bufs(), Vladis Dronov
• [oss-security] Multiple vulnerabilities in Jenkins plugins, Daniel Beck
• [oss-security] CVE-2019-3813: spice: Off-by-one error in array access in spice/server/memslot.c, Scott Gayou
  • Re: [oss-security] CVE-2019-3813: spice: Off-by-one error in array access in spice/server/memslot.c, Peter Korsgaard - Mon Jan 28 22:25:06 GMT 2019
• [oss-security] CVE-2018-11760: Apache Spark local privilege escalation vulnerability, Imran Rashid
• [oss-security] [CVE-2018-14013] Reflected Cross-Site Scripting (XSS) vulnerabilities in Zimbra Collaboration, Sysdream Labs
• [oss-security] [CVE-2018-20242] Apache JSPWiki Cross-site scripting vulnerability on Apache JSPWiki, Juan Pablo Santos Rodríguez
  • Re: [oss-security] [CVE-2018-20242] Apache JSPWiki Cross-site scripting vulnerability on Apache JSPWiki, Henri Salo - Thu Jan 31 08:39:43 GMT 2019