From owner-svn-ports-branches@FreeBSD.ORG Sat Jan 25 11:25:40 2014 Return-Path: Delivered-To: svn-ports-branches@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 2DEC7188; Sat, 25 Jan 2014 11:25:40 +0000 (UTC) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:1900:2254:2068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 0E2731849; Sat, 25 Jan 2014 11:25:40 +0000 (UTC) Received: from svn.freebsd.org ([127.0.1.70]) by svn.freebsd.org (8.14.7/8.14.7) with ESMTP id s0PBPdYf070218; Sat, 25 Jan 2014 11:25:39 GMT (envelope-from mat@svn.freebsd.org) Received: (from mat@localhost) by svn.freebsd.org (8.14.7/8.14.7/Submit) id s0PBPd4H070217; Sat, 25 Jan 2014 11:25:39 GMT (envelope-from mat@svn.freebsd.org) Message-Id: <201401251125.s0PBPd4H070217@svn.freebsd.org> From: Mathieu Arnold Date: Sat, 25 Jan 2014 11:25:39 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-branches@freebsd.org Subject: svn commit: r341010 - branches/2014Q1/security/vuxml X-SVN-Group: ports-branches MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-branches@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: SVN commit messages for all the branches of the ports tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 25 Jan 2014 11:25:40 -0000 Author: mat Date: Sat Jan 25 11:25:39 2014 New Revision: 341010 URL: http://svnweb.freebsd.org/changeset/ports/341010 QAT: https://qat.redports.org/buildarchive/r341010/ Log: MFH: r340750, r340819, r340877, r340998 - Document HTMLDOC < 1.8.28 vulnerability. - flash up-to 11.2r202.335 - Document Varnish HTTP Cache < 3.0.5 DoS Vulnerability Sponsored by: Absolight Modified: branches/2014Q1/security/vuxml/vuln.xml Directory Properties: branches/2014Q1/ (props changed) Modified: branches/2014Q1/security/vuxml/vuln.xml ============================================================================== --- branches/2014Q1/security/vuxml/vuln.xml Sat Jan 25 11:06:11 2014 (r341009) +++ branches/2014Q1/security/vuxml/vuln.xml Sat Jan 25 11:25:39 2014 (r341010) @@ -51,6 +51,111 @@ Note: Please add new entries to the beg --> + + varnish -- DoS vulnerability in Varnish HTTP cache + + + varnish + 3.0.5 + + + + +

Varnish Cache Project reports:

+
+

If Varnish receives a certain illegal request, and the subroutine + 'vcl_error{}' restarts the request, the varnishd worker process + will crash with an assert. +

+

The varnishd management process will restart the worker process, but + there will be a brief interruption of service and the cache will be + emptied, causing more traffic to go to the backend. +

+

We are releasing this advisory because restarting from vcl_error{} is both fairly common and documented.

+

This is purely a denial of service vulnerability, there is no risk of privilege escalation.

+

Workaround

+

Insert this at the top of your VCL file:

+
+		sub vcl_error {
+			if (obj.status == 400 || obj.status == 413) {
+				return(deliver);
+			}
+		}
+
+		Or add this test at the top of your existing vcl_error{}.
+	  
+
+ +
+ + CVE-2013-4484 + https://www.varnish-cache.org/lists/pipermail/varnish-announce/2013-October/000686.html + + + 2013-10-30 + 2014-01-25 + +
+ + + linux-flashplugin -- multiple vulnerabilities + + + linux-f10-flashplugin + 11.2r202.335 + + + + +

Adobe reports:

+
+

These updates address vulnerabilities that could cause a crash + and potentially allow an attacker to take control of the affected system.

+
+ +
+ + CVE-2014-0491 + CVE-2014-0492 + http://helpx.adobe.com/security/products/flash-player/apsb14-02.html + + + 2014-01-14 + 2014-01-24 + +
+ + + HTMLDOC -- buffer overflow issues when reading AFM files and parsing page sizes + + + htmldoc + 1.8.28 + + + + +

Michael Sweet reports:

+
+

HTMLDOC 1.8.28 fixes some known security issues and + formatting bugs. Changes include:

+
    +
  • SECURITY: Fixed three buffer overflow issues when + reading AFM files and parsing page sizes.
  • +
+
+ +
+ + http://www.msweet.org/projects.php?Z1 + + + 2014-01-06 + 2014-01-22 + 2014-01-23 + +
+ virtualbox-ose -- local vulnerability @@ -64,10 +169,10 @@ Note: Please add new entries to the beg

Oracle reports:

Unspecified vulnerability in the Oracle VM VirtualBox - component in Oracle Virtualization VirtualBox prior to - 3.2.20, 4.0.22, 4.1.30, 4.2.22, and 4.3.6 allows local - users to affect confidentiality, integrity, and availability - via unknown vectors related to Core.

+ component in Oracle Virtualization VirtualBox prior to + 3.2.20, 4.0.22, 4.1.30, 4.2.22, and 4.3.6 allows local + users to affect confidentiality, integrity, and availability + via unknown vectors related to Core.