Debian Bug report logs -
#536051
CVE-2009-2265, CVE-2009-2324: input sanitization errors
Reported by: Giuseppe Iuculano <giuseppe@iuculano.it>
Date: Tue, 7 Jul 2009 06:45:01 UTC
Severity: grave
Tags: lenny, security
Found in version fckeditor/1:2.6.2-1
Fixed in versions fckeditor/1:2.6.4.1-1, 1:2.6.2-1lenny1
Done: Frank Habermann <lordlamer@lordlamer.de>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, Debian Security Team <team@security.debian.org>, Debian Testing Security Team <secure-testing-team@lists.alioth.debian.org>, Frank Habermann <lordlamer@lordlamer.de>:
Bug#536051; Package fckeditor.
(Tue, 07 Jul 2009 06:45:05 GMT) (full text, mbox, link).
Acknowledgement sent
to Giuseppe Iuculano <giuseppe@iuculano.it>:
New Bug report received and forwarded. Copy sent to Debian Security Team <team@security.debian.org>, Debian Testing Security Team <secure-testing-team@lists.alioth.debian.org>, Frank Habermann <lordlamer@lordlamer.de>.
(Tue, 07 Jul 2009 06:45:05 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: fckeditor
Version: 1:2.6.2-1
Severity: grave
Tags: security lenny
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
the following CVE (Common Vulnerabilities & Exposures) ids were
published for fckeditor.
CVE-2009-2265[0]:
| Multiple directory traversal vulnerabilities in FCKeditor before
| 2.6.4.1 allow remote attackers to create executable files in arbitrary
| directories via directory traversal sequences in the input to
| unspecified connector modules, as exploited in the wild for remote
| code execution in July 2009, related to the file browser and the
| editor/filemanager/connectors/ directory.
CVE-2009-2324[1]:
| Multiple cross-site scripting (XSS) vulnerabilities in FCKeditor
| before 2.6.4.1 allow remote attackers to inject arbitrary web script
| or HTML via components in the samples (aka _samples) directory.
These are already fixed in debian unstable.
Please coordinate with the security team (team@security.debian.org) to
prepare packages for the stable releases.
If you fix the vulnerabilities please also make sure to include the
CVE ids in your changelog entry.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2265
http://security-tracker.debian.net/tracker/CVE-2009-2265
[1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2324
http://security-tracker.debian.net/tracker/CVE-2009-2324
Cheers,
Giuseppe.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkpS7BoACgkQNxpp46476aqLkgCfbfTGN8TqPG10C+EBvYMm82zJ
9ngAnRpSHHzwAfY1Usb0My2SzkvwunSF
=tCPb
-----END PGP SIGNATURE-----
Bug marked as fixed in version 1:2.6.4-1.
Request was from Giuseppe Iuculano <giuseppe@iuculano.it>
to control@bugs.debian.org.
(Tue, 07 Jul 2009 07:15:08 GMT) (full text, mbox, link).
Information forwarded
to debian-bugs-dist@lists.debian.org:
Bug#536051; Package fckeditor.
(Tue, 07 Jul 2009 07:42:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Frank Habermann <lordlamer@lordlamer.de>:
Extra info received and forwarded to list.
(Tue, 07 Jul 2009 07:42:04 GMT) (full text, mbox, link).
Message #12 received at 536051@bugs.debian.org (full text, mbox, reply):
Hi,
i contacted the security team ~6 hours ago with that.
Frank
Bug marked as fixed in version 1:2.6.4.1-1.
Request was from Giuseppe Iuculano <giuseppe@iuculano.it>
to control@bugs.debian.org.
(Tue, 07 Jul 2009 08:27:02 GMT) (full text, mbox, link).
Bug no longer marked as fixed in version 1:2.6.4-1.
Request was from Giuseppe Iuculano <giuseppe@iuculano.it>
to control@bugs.debian.org.
(Tue, 07 Jul 2009 08:27:03 GMT) (full text, mbox, link).
Reply sent
to Frank Habermann <lordlamer@lordlamer.de>:
You have taken responsibility.
(Sun, 19 Jul 2009 21:57:07 GMT) (full text, mbox, link).
Notification sent
to Giuseppe Iuculano <giuseppe@iuculano.it>:
Bug acknowledged by developer.
(Sun, 19 Jul 2009 21:57:07 GMT) (full text, mbox, link).
Message #21 received at 536051-done@bugs.debian.org (full text, mbox, reply):
Version: 1:2.6.2-1lenny1
Reply sent
to Frank Habermann <lordlamer@lordlamer.de>:
You have taken responsibility.
(Wed, 16 Dec 2009 23:54:03 GMT) (full text, mbox, link).
Notification sent
to Giuseppe Iuculano <giuseppe@iuculano.it>:
Bug acknowledged by developer.
(Wed, 16 Dec 2009 23:54:03 GMT) (full text, mbox, link).
Message #26 received at 536051-close@bugs.debian.org (full text, mbox, reply):
Source: fckeditor
Source-Version: 1:2.6.2-1lenny1
We believe that the bug you reported is fixed in the latest version of
fckeditor, which is due to be installed in the Debian FTP archive:
fckeditor_2.6.2-1lenny1.diff.gz
to main/f/fckeditor/fckeditor_2.6.2-1lenny1.diff.gz
fckeditor_2.6.2-1lenny1.dsc
to main/f/fckeditor/fckeditor_2.6.2-1lenny1.dsc
fckeditor_2.6.2-1lenny1_all.deb
to main/f/fckeditor/fckeditor_2.6.2-1lenny1_all.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 536051@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Frank Habermann <lordlamer@lordlamer.de> (supplier of updated fckeditor package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Tue, 07 Jul 2009 00:32:00 +0200
Source: fckeditor
Binary: fckeditor
Architecture: source all
Version: 1:2.6.2-1lenny1
Distribution: stable-security
Urgency: high
Maintainer: Frank Habermann <lordlamer@lordlamer.de>
Changed-By: Frank Habermann <lordlamer@lordlamer.de>
Description:
fckeditor - rich text format javascript web editor
Closes: 536051
Changes:
fckeditor (1:2.6.2-1lenny1) stable-security; urgency=high
.
* Backporting fix from version 2.6.2.1 for remote file upload
vulnerability [CVE 2009-2265] (Closes: #536051)
Checksums-Sha1:
b4f01576f28dd19ff9a0527ac08a3541073b6e2a 1028 fckeditor_2.6.2-1lenny1.dsc
a0bbab9447d37e0cc6b7c73df5304453e96a7811 934845 fckeditor_2.6.2.orig.tar.gz
43397a5e97d81f430977f7c571f8a469e587dbd1 25408 fckeditor_2.6.2-1lenny1.diff.gz
a9e324f9af2365797c7e2a26bd1c170cb9218eb5 945672 fckeditor_2.6.2-1lenny1_all.deb
Checksums-Sha256:
69d97ce269ca0a0b62fe02e837829a91a9996aaf2af14b045d809b6a5b19d592 1028 fckeditor_2.6.2-1lenny1.dsc
d2a97e311f862e78b57b2c89f374a3adc58de5e2e6659ba1c0d02715a1e111f2 934845 fckeditor_2.6.2.orig.tar.gz
91ede558728226b3bf213415892028be223f75f7eccf6809682631a80f0ea323 25408 fckeditor_2.6.2-1lenny1.diff.gz
0553a1c704469a4e35acebd4fa64368a2e96a0ea151c226787d4f8be165ba6a5 945672 fckeditor_2.6.2-1lenny1_all.deb
Files:
489da6d230d86e6347c2f5839ffd0af3 1028 web optional fckeditor_2.6.2-1lenny1.dsc
8b58da54703e47622e07b8fdc9f5f93d 934845 web optional fckeditor_2.6.2.orig.tar.gz
2e10c633f28bdffa1afda0918783ac9e 25408 web optional fckeditor_2.6.2-1lenny1.diff.gz
5a0d59f390945ab2df02c43be8e81a5c 945672 web optional fckeditor_2.6.2-1lenny1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkpe5HQACgkQ+C5cwEsrK54L8gCfWTfN/Uhm+QysYlmbjBRQXHF3
QkoAoOIkCOJxjvfzMwMU2UZejLJjrEJl
=sE5y
-----END PGP SIGNATURE-----
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Sun, 31 Jan 2010 07:36:23 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 15:19:11 2019;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon