From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-commits+bounces-1525-garchives=archives.gentoo.org@gentoo.org>)
	id 1IVsBf-0005Jk-Qh
	for garchives@archives.gentoo.org; Thu, 13 Sep 2007 17:09:08 +0000
Received: from robin.gentoo.org (localhost [127.0.0.1])
	by robin.gentoo.org (8.14.0/8.14.0) with SMTP id l8DH1poa019778;
	Thu, 13 Sep 2007 17:01:51 GMT
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	by robin.gentoo.org (8.14.0/8.14.0) with ESMTP id l8DH1niU019737
	for <gentoo-commits@lists.gentoo.org>; Thu, 13 Sep 2007 17:01:50 GMT
Received: from stork.gentoo.org (stork.gentoo.org [64.127.104.133])
	(using TLSv1 with cipher AES256-SHA (256/256 bits))
	(No client certificate requested)
	by smtp.gentoo.org (Postfix) with ESMTP id BCAA165743
	for <gentoo-commits@lists.gentoo.org>; Thu, 13 Sep 2007 17:01:48 +0000 (UTC)
Received: from pva by stork.gentoo.org with local (Exim 4.60)
	(envelope-from <pva@gentoo.org>)
	id 1IVs4Z-0000AH-If
	for gentoo-commits@lists.gentoo.org; Thu, 13 Sep 2007 17:01:47 +0000
From: "Peter Volkov (pva)" <pva@gentoo.org>
To: gentoo-commits@lists.gentoo.org
Subject: [gentoo-commits] gentoo-x86 commit in net-analyzer/jffnms/files: jffnms-0.8.3-misc-security-fixes.patch digest-jffnms-0.8.3-r2 digest-jffnms-0.8.2-r1 digest-jffnms-0.8.3-r1
X-VCS-Repository: gentoo-x86
X-VCS-Files: jffnms-0.8.3-misc-security-fixes.patch digest-jffnms-0.8.3-r2 digest-jffnms-0.8.2-r1 digest-jffnms-0.8.3-r1
X-VCS-Directories: net-analyzer/jffnms/files
X-VCS-Committer: pva
X-VCS-Committer-Name: Peter Volkov
Content-Type: text/plain; charset=utf8
Content-Transfer-Encoding: 8bit
Message-Id: <E1IVs4Z-0000AH-If@stork.gentoo.org>
Sender: Peter Volkov <pva@stork.gentoo.org>
Date: Thu, 13 Sep 2007 17:01:47 +0000
Precedence: bulk
List-Post: <mailto:gentoo-commits@lists.gentoo.org>
List-Help: <mailto:gentoo-commits+help@gentoo.org>
List-Unsubscribe: <mailto:gentoo-commits+unsubscribe@gentoo.org>
List-Subscribe: <mailto:gentoo-commits+subscribe@gentoo.org>
List-Id: Gentoo Linux mail <gentoo-commits.gentoo.org>
X-BeenThere: gentoo-commits@gentoo.org
Reply-To: gentoo-dev@lists.gentoo.org
X-Archives-Salt: 5740529f-fd52-4543-96cb-4c62fe51dfdb
X-Archives-Hash: 09e9b8c767e5ed27bb87aad5a47b2aa9

pva         07/09/13 17:01:47

  Added:                jffnms-0.8.3-misc-security-fixes.patch
                        digest-jffnms-0.8.3-r2
  Removed:              digest-jffnms-0.8.2-r1 digest-jffnms-0.8.3-r1
  Log:
  Fixes Multiple vulnerabilities (CVE-2007-31{89,90,91,92}) reported by Robert Buchholz <rbu AT gentoo.org> in bug #192240.
  (Portage version: 2.1.3.9)

Revision  Changes    Path
1.1                  net-analyzer/jffnms/files/jffnms-0.8.3-misc-security-fixes.patch

file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/jffnms-0.8.3-misc-security-fixes.patch?rev=1.1&view=markup
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/jffnms-0.8.3-misc-security-fixes.patch?rev=1.1&content-type=text/plain

Index: jffnms-0.8.3-misc-security-fixes.patch
===================================================================
Fixes different security problems:
http://bugs.gentoo.org/192240


diff -Naur jffnms-0.8.3/htdocs/admin/adm/test.php jffnms-0.8.4-pre3/htdocs/admin/adm/test.php
--- jffnms-0.8.3/htdocs/admin/adm/test.php	2006-09-17 03:31:13.000000000 +0400
+++ jffnms-0.8.4-pre3/htdocs/admin/adm/test.php	1970-01-01 03:00:00.000000000 +0300
@@ -1 +0,0 @@
-<? phpinfo(); ?>
\ В конце файла нет новой строки
diff -Naur jffnms-0.8.3/htdocs/auth.php jffnms-0.8.4-pre3/htdocs/auth.php
--- jffnms-0.8.3/htdocs/auth.php	2006-09-17 03:31:13.000000000 +0400
+++ jffnms-0.8.4-pre3/htdocs/auth.php	2007-06-07 16:00:08.000000000 +0400
@@ -46,11 +46,6 @@
 		    session_start();
 		}
 
-		if (($jffnms_version=="0.0.0") && ($_SERVER["REMOTE_ADDR"]=="128.30.52.13")) { //W3C Validator
-		    $_REQUEST["user"]="admin";
-		    $_REQUEST["pass"]="admin";
-		}
-		
 		if (!isset($_SESSION["authentification"]))
 		    $authentification = $jffnms->authenticate ($_REQUEST["user"],$_REQUEST["pass"],true,"from ".$_SERVER["REMOTE_ADDR"]);
 
diff -Naur jffnms-0.8.3/lib/api.classes.inc.php jffnms-0.8.4-pre3/lib/api.classes.inc.php
--- jffnms-0.8.3/lib/api.classes.inc.php	2006-09-17 03:31:14.000000000 +0400
+++ jffnms-0.8.4-pre3/lib/api.classes.inc.php	2007-06-07 16:00:08.000000000 +0400
@@ -677,7 +677,7 @@
     	    $auth_type = 1;
 	    $cant_auth = 0;
 	    
-	    if (isset($user) && isset($pass)) {
+	    if (preg_match("/^[\w\@\.]{0,20}$/", $user) && isset($pass)) {
 		$query_auth = "select id as auth_user_id, usern as auth_user_name, passwd, fullname as auth_user_fullname from auth where usern = '$user'";
 		$result_auth = db_query ($query_auth);
 		$cant_auth = db_num_rows($result_auth);
@@ -693,18 +693,20 @@
 	    } 
     
 	    if (($auth==0) && ($cant_auth == 0)){  //not found in DB
-		if (isset($user) && isset($pass)) {
+
+		if (preg_match("/^[\w\@\.]{0,20}$/", $user) && isset($pass)) {
     		    $query_auth = "select id as auth_user_id, username as auth_user_name, name as auth_user_fullname from clients where username= '$user' and password = '$pass'";
 		    $result_auth = db_query ($query_auth);
 		    $auth = db_num_rows( $result_auth);
 		}
+		
 		if ($auth==1) { 
 		    $reg = db_fetch_array($result_auth);
 		    $auth_type = 2;
 		}
 	    }
 	    
-	    if (($log_event==true) && (!empty($user)))
+	    if (($log_event==true) && preg_match("/^[\w\@\.]{0,20}$/", $user))
 		insert_event(date("Y-m-d H:i:s",time()),get_config_option("jffnms_internal_type"),1,"Login",(($auth==1)?"successful":"failed"),$user,$log_event_info,"",0);
 	    
 	    unset ($reg["passwd"]);



1.1                  net-analyzer/jffnms/files/digest-jffnms-0.8.3-r2

file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/digest-jffnms-0.8.3-r2?rev=1.1&view=markup
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-analyzer/jffnms/files/digest-jffnms-0.8.3-r2?rev=1.1&content-type=text/plain

Index: digest-jffnms-0.8.3-r2
===================================================================
MD5 6f030ee09302b67f639eaff713b78c65 jffnms-0.8.3.tar.gz 698871
RMD160 681d498bf49f3e1011241254c441540ebbbe1860 jffnms-0.8.3.tar.gz 698871
SHA256 51f84606aa81113b2ea894c9e499f18df84e5317853aefd51610f5b279853ae4 jffnms-0.8.3.tar.gz 698871



-- 
gentoo-commits@gentoo.org mailing list