Debian Bug report logs -
#561975
CVE-2009-4427: Local file inclusion vulnerability
Reported by: Giuseppe Iuculano <iuculano@debian.org>
Date: Mon, 21 Dec 2009 17:36:01 UTC
Severity: grave
Tags: security
Fixed in versions phpldapadmin/1.1.0.7-1.1, phpldapadmin/1.1.0.5-6+lenny1
Done: Giuseppe Iuculano <iuculano@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, team@security.debian.org, secure-testing-team@lists.alioth.debian.org, Fabio Tranchitella <kobold@debian.org>
:
Bug#561975
; Package phpldapadmin
.
(Mon, 21 Dec 2009 17:36:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Giuseppe Iuculano <iuculano@debian.org>
:
New Bug report received and forwarded. Copy sent to team@security.debian.org, secure-testing-team@lists.alioth.debian.org, Fabio Tranchitella <kobold@debian.org>
.
(Mon, 21 Dec 2009 17:36:04 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: phpldapadmin
Severity: grave
Tags: security
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
A vulnerability has been discovered on phpLDAPadmin, which can be exploited by
malicious people to disclose sensitive information.
Input passed via the "cmd" parameter to cmd.php is not properly verified before
being used to include files. This can be exploited to include arbitrary files
from local resources.
See: http://www.exploit-db.com/exploits/10410
http://secunia.com/advisories/37848/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAksvsR8ACgkQNxpp46476aqtuQCgj81pPrUhqj6AJrWiRfD7BILB
ghgAn3lQTCTMPIVPnKK+UXKVaY4G7FcW
=thz2
-----END PGP SIGNATURE-----
Information forwarded
to debian-bugs-dist@lists.debian.org, Fabio Tranchitella <kobold@debian.org>
:
Bug#561975
; Package phpldapadmin
.
(Sun, 03 Jan 2010 10:24:08 GMT) (full text, mbox, link).
Acknowledgement sent
to Giuseppe Iuculano <giuseppe@iuculano.it>
:
Extra info received and forwarded to list. Copy sent to Fabio Tranchitella <kobold@debian.org>
.
(Sun, 03 Jan 2010 10:24:08 GMT) (full text, mbox, link).
Message #10 received at 561975@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
retitle 561975 CVE-2009-4427: Local file inclusion vulnerability
thanks
Hi,
this issue got a CVE id:
CVE-2009-4427[0]:
| Directory traversal vulnerability in cmd.php in phpLDAPadmin 1.1.0.5
| allows remote attackers to include and execute arbitrary local files
| via a .. (dot dot) in the cmd parameter.
If you fix the vulnerability please also make sure to include the
CVE id in your changelog entry.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4427
http://security-tracker.debian.org/tracker/CVE-2009-4427
[signature.asc (application/pgp-signature, attachment)]
Changed Bug title to 'CVE-2009-4427: Local file inclusion vulnerability' from 'Local file inclusion vulnerability'
Request was from Giuseppe Iuculano <giuseppe@iuculano.it>
to control@bugs.debian.org
.
(Sun, 03 Jan 2010 10:24:10 GMT) (full text, mbox, link).
Information forwarded
to debian-bugs-dist@lists.debian.org, Fabio Tranchitella <kobold@debian.org>
:
Bug#561975
; Package phpldapadmin
.
(Sun, 03 Jan 2010 10:57:02 GMT) (full text, mbox, link).
Acknowledgement sent
to Giuseppe Iuculano <iuculano@debian.org>
:
Extra info received and forwarded to list. Copy sent to Fabio Tranchitella <kobold@debian.org>
.
(Sun, 03 Jan 2010 10:57:03 GMT) (full text, mbox, link).
Message #17 received at 561975@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
Hi,
Attached is a debdiff of the changes I made for 1.1.0.7-1.1 0-day NMU.
Cheers,
Giuseppe
[phpldapadmin_1.1.0.7-1.1.debdiff (text/plain, attachment)]
[signature.asc (application/pgp-signature, attachment)]
Reply sent
to Giuseppe Iuculano <iuculano@debian.org>
:
You have taken responsibility.
(Sun, 03 Jan 2010 11:06:07 GMT) (full text, mbox, link).
Notification sent
to Giuseppe Iuculano <iuculano@debian.org>
:
Bug acknowledged by developer.
(Sun, 03 Jan 2010 11:06:07 GMT) (full text, mbox, link).
Message #22 received at 561975-close@bugs.debian.org (full text, mbox, reply):
Source: phpldapadmin
Source-Version: 1.1.0.7-1.1
We believe that the bug you reported is fixed in the latest version of
phpldapadmin, which is due to be installed in the Debian FTP archive:
phpldapadmin_1.1.0.7-1.1.diff.gz
to main/p/phpldapadmin/phpldapadmin_1.1.0.7-1.1.diff.gz
phpldapadmin_1.1.0.7-1.1.dsc
to main/p/phpldapadmin/phpldapadmin_1.1.0.7-1.1.dsc
phpldapadmin_1.1.0.7-1.1_all.deb
to main/p/phpldapadmin/phpldapadmin_1.1.0.7-1.1_all.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 561975@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Giuseppe Iuculano <iuculano@debian.org> (supplier of updated phpldapadmin package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Sun, 03 Jan 2010 11:47:29 +0100
Source: phpldapadmin
Binary: phpldapadmin
Architecture: source all
Version: 1.1.0.7-1.1
Distribution: unstable
Urgency: high
Maintainer: Fabio Tranchitella <kobold@debian.org>
Changed-By: Giuseppe Iuculano <iuculano@debian.org>
Description:
phpldapadmin - web based interface for administering LDAP servers
Closes: 561975
Changes:
phpldapadmin (1.1.0.7-1.1) unstable; urgency=high
.
* Non-maintainer upload by the Security Team.
* Fixed CVE-2009-4427 (Closes: #561975)
Checksums-Sha1:
3f60af319f44d5b02aee73f49c18ce6735a52a9e 1048 phpldapadmin_1.1.0.7-1.1.dsc
373d4e7d5c56da96459c21ba4a3a84ddfd63afbb 22949 phpldapadmin_1.1.0.7-1.1.diff.gz
7728adb69bc344dc43c6e1c9ed104e66233b3efd 1062982 phpldapadmin_1.1.0.7-1.1_all.deb
Checksums-Sha256:
708001adb53f03eed564744b8d1dacfa59498717fd43aa0cb8fcd2dfd57ba5bf 1048 phpldapadmin_1.1.0.7-1.1.dsc
4a4d7a77a82cf5d389575c95a9eee570617ad80635d271ee6bf6b4f99417fee4 22949 phpldapadmin_1.1.0.7-1.1.diff.gz
ca2546bd109cfc74519be770dada943979720014604731b128c1f724fca6bd64 1062982 phpldapadmin_1.1.0.7-1.1_all.deb
Files:
c4ec36abdb6f247ba32776f16f701e59 1048 admin extra phpldapadmin_1.1.0.7-1.1.dsc
84bbe0b3763acc8c6609d14c9c21fa40 22949 admin extra phpldapadmin_1.1.0.7-1.1.diff.gz
19814c814e7f52c82d2a544e4e43c796 1062982 admin extra phpldapadmin_1.1.0.7-1.1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAktAdq0ACgkQNxpp46476apsZACePbkU5cBPst5YPivS6BCIWDKj
WPwAoIyrjAy5E0GKLn3Kdza1V6DdchNE
=8tTT
-----END PGP SIGNATURE-----
Information forwarded
to debian-bugs-dist@lists.debian.org, Fabio Tranchitella <kobold@debian.org>
:
Bug#561975
; Package phpldapadmin
.
(Mon, 04 Jan 2010 20:21:08 GMT) (full text, mbox, link).
Acknowledgement sent
to Giuseppe Iuculano <iuculano@debian.org>
:
Extra info received and forwarded to list. Copy sent to Fabio Tranchitella <kobold@debian.org>
.
(Mon, 04 Jan 2010 20:21:08 GMT) (full text, mbox, link).
Message #27 received at 561975@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
Giuseppe Iuculano ha scritto:
> Hi,
>
> Attached is a debdiff of the changes I made for 1.1.0.7-1.1 0-day NMU.
Hi,
previous NMU introduced a regression. Attached the debdiff for 1.1.0.7-1.2 0-day
NMU.
Cheers,
Giuseppe.
[phpldapadmin_1.1.0.7-1.2.debdiff (text/plain, attachment)]
[signature.asc (application/pgp-signature, attachment)]
Reply sent
to Giuseppe Iuculano <iuculano@debian.org>
:
You have taken responsibility.
(Thu, 07 Jan 2010 01:57:03 GMT) (full text, mbox, link).
Notification sent
to Giuseppe Iuculano <iuculano@debian.org>
:
Bug acknowledged by developer.
(Thu, 07 Jan 2010 01:57:04 GMT) (full text, mbox, link).
Message #32 received at 561975-close@bugs.debian.org (full text, mbox, reply):
Source: phpldapadmin
Source-Version: 1.1.0.5-6+lenny1
We believe that the bug you reported is fixed in the latest version of
phpldapadmin, which is due to be installed in the Debian FTP archive:
phpldapadmin_1.1.0.5-6+lenny1.diff.gz
to main/p/phpldapadmin/phpldapadmin_1.1.0.5-6+lenny1.diff.gz
phpldapadmin_1.1.0.5-6+lenny1.dsc
to main/p/phpldapadmin/phpldapadmin_1.1.0.5-6+lenny1.dsc
phpldapadmin_1.1.0.5-6+lenny1_all.deb
to main/p/phpldapadmin/phpldapadmin_1.1.0.5-6+lenny1_all.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 561975@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Giuseppe Iuculano <iuculano@debian.org> (supplier of updated phpldapadmin package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Wed, 06 Jan 2010 17:53:30 +0100
Source: phpldapadmin
Binary: phpldapadmin
Architecture: source all
Version: 1.1.0.5-6+lenny1
Distribution: stable-security
Urgency: high
Maintainer: Fabio Tranchitella <kobold@debian.org>
Changed-By: Giuseppe Iuculano <iuculano@debian.org>
Description:
phpldapadmin - web based interface for administering LDAP servers
Closes: 561975
Changes:
phpldapadmin (1.1.0.5-6+lenny1) stable-security; urgency=high
.
* Non-maintainer upload by the Security Team.
* Fixed CVE-2009-4427: Local file inclusion vulnerability (Closes: #561975)
Checksums-Sha1:
9bfe342893fdb4cef0947fb871784d690e47e8db 1068 phpldapadmin_1.1.0.5-6+lenny1.dsc
93a7cb2466d554b431fde7278f78f2c87c5edb81 1031912 phpldapadmin_1.1.0.5.orig.tar.gz
e7bd3f951425ffb1966409453162c503c1390397 21645 phpldapadmin_1.1.0.5-6+lenny1.diff.gz
52d06e192cbfed7ac8aa025e43fe1565a0b8c4f0 933570 phpldapadmin_1.1.0.5-6+lenny1_all.deb
Checksums-Sha256:
7bf0952dbc1278b6604a39014d6019dc1f728b14be61679f0438554433bcc53b 1068 phpldapadmin_1.1.0.5-6+lenny1.dsc
1247c3d0fb671d6c8cc27319b659ba7c9402abb70c904e0ece83c8b7dcc26e1b 1031912 phpldapadmin_1.1.0.5.orig.tar.gz
33d1cc9ecd712d3bb83afe72a4f71aef1841f87f9e6492d9e09a5df8d5448d57 21645 phpldapadmin_1.1.0.5-6+lenny1.diff.gz
a5156da9c81264454468f140b3880601068e0544fbaeec80d82ccf9a56d5e8b7 933570 phpldapadmin_1.1.0.5-6+lenny1_all.deb
Files:
ebc99daefc4b94085ad54ce370e7dfed 1068 admin extra phpldapadmin_1.1.0.5-6+lenny1.dsc
5ea78a6758e347c77ef291882675f266 1031912 admin extra phpldapadmin_1.1.0.5.orig.tar.gz
99a56a04aebcd351d9ad737b36d7d553 21645 admin extra phpldapadmin_1.1.0.5-6+lenny1.diff.gz
eedb4237de11744a51142a9dfeaec806 933570 admin extra phpldapadmin_1.1.0.5-6+lenny1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAktEwswACgkQNxpp46476apXPgCfdOF4/MrR+nL8EY8m8ur7D6oj
a6MAnio3yi6SEWQHs0hklkQrb/zzSN3V
=MhAQ
-----END PGP SIGNATURE-----
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org
.
(Thu, 04 Feb 2010 07:34:42 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 17:42:59 2019;
Machine Name:
beach
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.