Date: Tue, 30 Jun 2020 08:04:16 +0000 (UTC) From: Koichiro Iwao <meta@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r540867 - head/security/vuxml Message-ID: <202006300804.05U84GSo025207@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: meta Date: Tue Jun 30 08:04:16 2020 New Revision: 540867 URL: https://svnweb.freebsd.org/changeset/ports/540867 Log: Document xrdp CVE-2020-4044 vulnerability Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Tue Jun 30 07:42:02 2020 (r540866) +++ head/security/vuxml/vuln.xml Tue Jun 30 08:04:16 2020 (r540867) @@ -58,6 +58,33 @@ Notes: * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="2675f0db-baa5-11ea-aa12-80ee73419af3"> + <topic>xrdp -- Local users can perform a buffer overflow attack against the xrdp-sesman service and then inpersonate it</topic> + <affects> + <package> + <name>xrdp</name> + <range><lt>0.9.13.1,1</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Ashley Newson reports:</p> + <blockquote cite="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-4044"> + <p>The xrdp-sesman service can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350.</p> + </blockquote> + </body> + </description> + <references> + <url>https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-j9fv-6fwf-p3g4</url> + <url>https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-4044</url> + <cvename>CVE-2020-4044</cvename> + </references> + <dates> + <discovery>2020-06-02</discovery> + <entry>2020-06-30</entry> + </dates> + </vuln> + <vuln vid="d0be8e1f-b19a-11ea-94aa-b827eb2f57d4"> <topic>MongoDB -- Ensure RoleGraph can serialize authentication restrictions to BSON</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202006300804.05U84GSo025207>