Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

flightgear: CVE-2017-8921

Related Vulnerabilities: CVE-2017-8921   CVE-2016-9956  

Source

Debian Bug report logs - #862689
flightgear: CVE-2017-8921

version graph

Package: src:flightgear; Maintainer for src:flightgear is Debian FlightGear Crew <team+flightgear@tracker.debian.org>;

Reported by: Salvatore Bonaccorso <carnil@debian.org>

Date: Mon, 15 May 2017 20:09:01 UTC

Severity: grave

Tags: patch, security, upstream

Found in versions flightgear/1:2016.4.4+dfsg-2, flightgear/3.0.0-5

Fixed in versions flightgear/1:2016.4.4+dfsg-3, flightgear/3.0.0-5+deb8u2

Done: Markus Wanner <markus@bluegap.ch>

Bug is archived. No further changes may be made.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to debian-bugs-dist@lists.debian.org, carnil@debian.org, team@security.debian.org, secure-testing-team@lists.alioth.debian.org, Debian FlightGear Crew <pkg-fgfs-crew@lists.alioth.debian.org>:
Bug#862689; Package src:flightgear. (Mon, 15 May 2017 20:09:04 GMT) (full text, mbox, link).

Acknowledgement sent to Salvatore Bonaccorso <carnil@debian.org>:
New Bug report received and forwarded. Copy sent to carnil@debian.org, team@security.debian.org, secure-testing-team@lists.alioth.debian.org, Debian FlightGear Crew <pkg-fgfs-crew@lists.alioth.debian.org>. (Mon, 15 May 2017 20:09:04 GMT) (full text, mbox, link).

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Salvatore Bonaccorso <carnil@debian.org>
To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: flightgear: CVE-2017-8921
Date: Mon, 15 May 2017 22:05:59 +0200
Source: flightgear
Version: 1:2016.4.4+dfsg-2
Severity: grave
Tags: upstream patch security
Control: found -1 3.0.0-5

Hi,

the following vulnerability was published for flightgear.

CVE-2017-8921[0]:
| In FlightGear before 2017.2.1, the FGCommand interface allows
| overwriting any file the user has write access to, but not with
| arbitrary data: only with the contents of a FlightGear flightplan
| (XML). A resource such as a malicious third-party aircraft could
| exploit this to damage files belonging to the user. Both this issue and
| CVE-2016-9956 are directory traversal vulnerabilities in
| Autopilot/route_mgr.cxx - this one exists because of an incomplete fix
| for CVE-2016-9956.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-8921
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8921

Regards,
Salvatore

Marked as found in versions flightgear/3.0.0-5. Request was from Salvatore Bonaccorso <carnil@debian.org> to submit@bugs.debian.org. (Mon, 15 May 2017 20:09:04 GMT) (full text, mbox, link).

Reply sent to toddy@debian.org (Dr. Tobias Quathamer):
You have taken responsibility. (Fri, 19 May 2017 19:51:04 GMT) (full text, mbox, link).

Notification sent to Salvatore Bonaccorso <carnil@debian.org>:
Bug acknowledged by developer. (Fri, 19 May 2017 19:51:04 GMT) (full text, mbox, link).

Message #12 received at 862689-close@bugs.debian.org (full text, mbox, reply):

From: toddy@debian.org (Dr. Tobias Quathamer)
To: 862689-close@bugs.debian.org
Subject: Bug#862689: fixed in flightgear 1:2016.4.4+dfsg-3
Date: Fri, 19 May 2017 19:48:41 +0000
Source: flightgear
Source-Version: 1:2016.4.4+dfsg-3

We believe that the bug you reported is fixed in the latest version of
flightgear, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 862689@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Dr. Tobias Quathamer <toddy@debian.org> (supplier of updated flightgear package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 19 May 2017 21:10:15 +0200
Source: flightgear
Binary: flightgear
Architecture: source
Version: 1:2016.4.4+dfsg-3
Distribution: unstable
Urgency: medium
Maintainer: Debian FlightGear Crew <pkg-fgfs-crew@lists.alioth.debian.org>
Changed-By: Dr. Tobias Quathamer <toddy@debian.org>
Description:
 flightgear - Flight Gear Flight Simulator
Closes: 862689
Changes:
 flightgear (1:2016.4.4+dfsg-3) unstable; urgency=medium
 .
   * Team upload.
   * Fix RouteMgr security: don't allow overwriting arbitrary files.
     This fixes CVE-2017-8921.
     Thanks to Salvatore Bonaccorso <carnil@debian.org> (Closes: #862689)
Checksums-Sha1:
 fa203d81442dbae20768e0e1df871f23bba5f9d7 2617 flightgear_2016.4.4+dfsg-3.dsc
 608554e3a7f289196838fe25633bc30ff5771fd0 24260 flightgear_2016.4.4+dfsg-3.debian.tar.xz
 44fe685b8c5bba440a9cf2b10b230e4f6eaed68e 16627 flightgear_2016.4.4+dfsg-3_amd64.buildinfo
Checksums-Sha256:
 3e2d823a448de0555bf5d69d735820833612b1454f5c1deb03678121e8078807 2617 flightgear_2016.4.4+dfsg-3.dsc
 21aca663b6536eaed2b7c5c368ba3e36468cc4362ea2ad7bdd27cdf0096feb53 24260 flightgear_2016.4.4+dfsg-3.debian.tar.xz
 b08e3494515546ae4649a4f7f75d2b83575022e3559be8993504c5d871780510 16627 flightgear_2016.4.4+dfsg-3_amd64.buildinfo
Files:
 845442557d68fcab00df7613c1850b88 2617 games extra flightgear_2016.4.4+dfsg-3.dsc
 ce28e30a3003b4ce433206720279d065 24260 games extra flightgear_2016.4.4+dfsg-3.debian.tar.xz
 b715c07029b98d418b75ce1c97311531 16627 games extra flightgear_2016.4.4+dfsg-3_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=qPnQ
-----END PGP SIGNATURE-----

Reply sent to Markus Wanner <markus@bluegap.ch>:
You have taken responsibility. (Sat, 15 Jul 2017 21:51:25 GMT) (full text, mbox, link).

Notification sent to Salvatore Bonaccorso <carnil@debian.org>:
Bug acknowledged by developer. (Sat, 15 Jul 2017 21:51:25 GMT) (full text, mbox, link).

Message #17 received at 862689-close@bugs.debian.org (full text, mbox, reply):

From: Markus Wanner <markus@bluegap.ch>
To: 862689-close@bugs.debian.org
Subject: Bug#862689: fixed in flightgear 3.0.0-5+deb8u2
Date: Sat, 15 Jul 2017 21:49:18 +0000
Source: flightgear
Source-Version: 3.0.0-5+deb8u2

We believe that the bug you reported is fixed in the latest version of
flightgear, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 862689@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Markus Wanner <markus@bluegap.ch> (supplier of updated flightgear package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 02 Jul 2017 13:54:58 +0200
Source: flightgear
Binary: flightgear
Architecture: source amd64
Version: 3.0.0-5+deb8u2
Distribution: jessie
Urgency: high
Maintainer: Debian FlightGear Crew <pkg-fgfs-crew@lists.alioth.debian.org>
Changed-By: Markus Wanner <markus@bluegap.ch>
Description:
 flightgear - Flight Gear Flight Simulator
Closes: 862689
Changes:
 flightgear (3.0.0-5+deb8u2) jessie; urgency=high
 .
   * Add patch restrict-save-flightplan-secu-fix-faf872.patch: prevent
     overriding arbitrary files from the "save-flightplan" FGCommand.
     Closes: #862689 (CVE-2017-8921).
Checksums-Sha1:
 7075f4ea2969cb632828db9717dd574ecde12c17 3255 flightgear_3.0.0-5+deb8u2.dsc
 6af27a9fb2b6df0ca8c447ec4338d6ea883377ba 29628 flightgear_3.0.0-5+deb8u2.debian.tar.xz
 90406a0b4ce81121ca5e3fb01837c41fe0518a0c 3941262 flightgear_3.0.0-5+deb8u2_amd64.deb
Checksums-Sha256:
 c7bcab75113db0dfecfd38265ebe0fa1b04c8ca43f3dd00934c593f2f122074e 3255 flightgear_3.0.0-5+deb8u2.dsc
 5f5b973ab45c95250e58e976136807f3724951939883f8d2f017b860f93b3ebe 29628 flightgear_3.0.0-5+deb8u2.debian.tar.xz
 4716f9a91ae80ced0c248a84dd7671828042d301a3fb4a6edf325f1fd2b8beba 3941262 flightgear_3.0.0-5+deb8u2_amd64.deb
Files:
 89ffddfdc07aef56c3e1b0522ea41444 3255 games extra flightgear_3.0.0-5+deb8u2.dsc
 13dbc7a59a1c18470ed363fb758884f5 29628 games extra flightgear_3.0.0-5+deb8u2.debian.tar.xz
 e9257fb7208d6ee762d8b3b03f47a7c2 3941262 games extra flightgear_3.0.0-5+deb8u2_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=oHhG
-----END PGP SIGNATURE-----

Bug archived. Request was from Debbugs Internal Request <owner@bugs.debian.org> to internal_control@bugs.debian.org. (Sun, 13 Aug 2017 07:30:19 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Wed Jun 19 14:12:46 2019; Machine Name: beach

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started