From owner-dev-commits-ports-main@freebsd.org  Sun Sep 19 07:08:15 2021
Return-Path: <owner-dev-commits-ports-main@freebsd.org>
Delivered-To: dev-commits-ports-main@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id C2C156ADDED;
 Sun, 19 Sep 2021 07:08:15 +0000 (UTC)
 (envelope-from herbert@gojira.at)
Received: from mail.bsd4all.net (mail.bsd4all.net [IPv6:2a01:4f8:13b:240c::25])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
 client-signature RSA-PSS (4096 bits) client-digest SHA256)
 (Client CN "mail.bsd4all.net", Issuer "R3" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 4HBzL656bgz4Qyv;
 Sun, 19 Sep 2021 07:08:14 +0000 (UTC)
 (envelope-from herbert@gojira.at)
Date: Sun, 19 Sep 2021 09:04:53 +0200
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=gojira.at;
 s=mail202005; t=1632035286;
 bh=dBF08winWRc1dLpxnOdgcAKiVKMKMeU6Adggs1isfS0=;
 h=Date:Message-ID:From:To:Cc:Subject:MIME-Version:Content-Type;
 b=reGEU5Aahatp/akoFqwocMWKCEZwozjFb46pkm12rJqeuj38/JP8FYHfJPU/xmRVn
 fK8iO3RUqwOZ/5f+i2haNJpGC8APVt+kA3cOwAGQT4d9jEEVsRlV3tPRnm2Y9QR/Gc
 r92Pan8bR1R57v7kv3Kga/HNmVhNjVvwjaXHIXDvrnwMCTsKDon9kbqJmZ52M78AsP
 pxSgcZA1CWdMioN2Sm/DZYKoWVSSbJQ0Oz5buy9JY7b6ZRNt0ZHAw8GaRoN3pSGdoj
 j6R9+5I6FhmZfKMH65WQ7sUds/xG5bmxYuCjRXgFc+q0k9tRdskDrGBCYBpM5EtVF5
 A0dHRPmTLH0ZQ==
Message-ID: <87v92xjbai.wl-herbert@gojira.at>
From: "Herbert J. Skuhra" <herbert@gojira.at>
To: Eugene Grosbein <eugen@FreeBSD.org>
Cc: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org,
 dev-commits-ports-main@FreeBSD.org
Subject: Re: git: 2c7d4d50c06a - main - security/vuxml: add net/mpd5 PPPoE
 Server remotely exploitable crash
In-Reply-To: <202109082208.188M8tVX016686@gitrepo.freebsd.org>
References: <202109082208.188M8tVX016686@gitrepo.freebsd.org>
User-Agent: Wanderlust/2.15.9 (Almost Unreal) Emacs/28.0 Mule/6.0
MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue")
Content-Type: text/plain; charset=US-ASCII
X-Rspamd-Queue-Id: 4HBzL656bgz4Qyv
X-Spamd-Bar: --
Authentication-Results: mx1.freebsd.org;
 dkim=pass header.d=gojira.at header.s=mail202005 header.b=reGEU5Aa;
 dmarc=none;
 spf=pass (mx1.freebsd.org: domain of herbert@gojira.at designates
 2a01:4f8:13b:240c::25 as permitted sender) smtp.mailfrom=herbert@gojira.at
X-Spamd-Result: default: False [-2.36 / 15.00]; ARC_NA(0.00)[];
 NEURAL_HAM_MEDIUM(-1.00)[-1.000];
 R_DKIM_ALLOW(-0.20)[gojira.at:s=mail202005];
 RCPT_COUNT_THREE(0.00)[4]; TO_DN_SOME(0.00)[];
 R_SPF_ALLOW(-0.20)[+ip6:2a01:4f8:13b:240c::25];
 FROM_HAS_DN(0.00)[]; MIME_GOOD(-0.10)[text/plain];
 TO_MATCH_ENVRCPT_ALL(0.00)[]; DMARC_NA(0.00)[gojira.at];
 NEURAL_HAM_LONG(-1.00)[-1.000]; DKIM_TRACE(0.00)[gojira.at:+];
 NEURAL_HAM_SHORT(-0.86)[-0.862]; MID_CONTAINS_FROM(1.00)[];
 RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[];
 MIME_TRACE(0.00)[0:+];
 ASN(0.00)[asn:24940, ipnet:2a01:4f8::/32, country:DE];
 MAILMAN_DEST(0.00)[dev-commits-ports-all,dev-commits-ports-main]
X-BeenThere: dev-commits-ports-main@freebsd.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: Commits to the main branch of the FreeBSD ports repository
 <dev-commits-ports-main.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/dev-commits-ports-main>, 
 <mailto:dev-commits-ports-main-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/dev-commits-ports-main/>
List-Post: <mailto:dev-commits-ports-main@freebsd.org>
List-Help: <mailto:dev-commits-ports-main-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/dev-commits-ports-main>, 
 <mailto:dev-commits-ports-main-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 19 Sep 2021 07:08:15 -0000

On Thu, 09 Sep 2021 00:08:55 +0200, Eugene Grosbein wrote:
> 
> The branch main has been updated by eugen:
> 
> URL: https://cgit.FreeBSD.org/ports/commit/?id=2c7d4d50c06ac12410414813427604ee9af673dd
> 
> commit 2c7d4d50c06ac12410414813427604ee9af673dd
> Author:     Eugene Grosbein <eugen@FreeBSD.org>
> AuthorDate: 2021-09-08 21:55:19 +0000
> Commit:     Eugene Grosbein <eugen@FreeBSD.org>
> CommitDate: 2021-09-08 22:02:51 +0000
> 
>     security/vuxml: add net/mpd5 PPPoE Server remotely exploitable crash
>     
>     Version 5.9_2 contains security fix for PPPoE servers.
>     Insufficient validation of incoming PPPoE Discovery request
>     specially crafted by unauthenticated user might lead to unexpected
>     termination of the process. The problem affects mpd versions since 5.0.
>     Installations not using PPPoE server configuration were not affected.
>     
>     Reported by:    Yannick C at SourceForge
>     Tested by:      Yannick C at SourceForge, paul at SourceForge
> ---
>  security/vuxml/vuln-2021.xml | 28 ++++++++++++++++++++++++++++
>  1 file changed, 28 insertions(+)
> 
> diff --git a/security/vuxml/vuln-2021.xml b/security/vuxml/vuln-2021.xml
> index 09525e60d803..1b308b51ea74 100644
> --- a/security/vuxml/vuln-2021.xml
> +++ b/security/vuxml/vuln-2021.xml
> @@ -1,3 +1,31 @@
> +  <vuln vid="f55921aa-10c9-11ec-8647-00e0670f2660">
> +    <topic>MPD5 PPPoE Server remotely exploitable crash</topic>
> +    <affects>
> +      <package>
> +	<name>mpd5</name>
> +	<range><ge>5.0</ge></range>
> +	<range><lt>5.9_2</lt></range>
> +      </package>
> +    </affects>
> +    <description>
> +      <body xmlns="http://www.w3.org/1999/xhtml">
> +	<p>Version 5.9_2 contains security fix for PPPoE servers.
> +	Insufficient validation of incoming PPPoE Discovery request
> +	specially crafted by unauthenticated user might lead to unexpected
> +	termination of the process. The problem affects mpd versions
> +	since 5.0. Installations not using PPPoE server configuration
> +	were not affected.</p>
> +      </body>
> +    </description>
> +    <references>
> +	<url>http://mpd.sourceforge.net/doc5/mpd4.html#4</url>
> +    </references>
> +    <dates>
> +      <discovery>2021-09-04</discovery>
> +      <entry>2021-09-09</entry>
> +    </dates>
> +  </vuln>
> +

===>  mpd5-5.9_4 has known vulnerabilities:
mpd5-5.9_4 is vulnerable:
  MPD5 PPPoE Server remotely exploitable crash
  WWW: https://vuxml.FreeBSD.org/freebsd/f55921aa-10c9-11ec-8647-00e0670f2660.html

1 problem(s) in 1 installed package(s) found.
=> Please update your ports tree and try again.
=> Note: Vulnerable ports are marked as such even if there is no update available.
=> If you wish to ignore this vulnerability rebuild with 'make DISABLE_VULNERABILITIES=yes'
*** Error code 1

Stop.
make[1]: stopped in /usr/ports/net/mpd5
*** Error code 1

Stop.
make: stopped in /usr/ports/net/mpd5

--
Herbert