February 2019 - openSUSE Bugs - openSUSE Mailing Lists

[Bug 1124121] security/sshguard: Unable to parse SSH invalid user entries, version bump request
by bugzilla_noreply＠novell.com 04 Feb '19

04 Feb '19

http://bugzilla.suse.com/show_bug.cgi?id=1124121 Marcus Meissner <meissner(a)suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |joop.boonen(a)boonen.org -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1124059] ca-certificates-mozilla-2.30-lp150.3.9.1.noarch : lot of invalid field line or invalid
by bugzilla_noreply＠novell.com 04 Feb '19

04 Feb '19

http://bugzilla.suse.com/show_bug.cgi?id=1124059 http://bugzilla.suse.com/show_bug.cgi?id=1124059#c1 Marcus Meissner <meissner(a)suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |bruno(a)ioda-net.ch Flags| |needinfo?(bruno(a)ioda-net.ch | |) --- Comment #1 from Marcus Meissner <meissner(a)suse.com> --- These files do not come from our packages... Can you check where they are from? They might be in the wrong directory. -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1118803] New: [Build 361.3] openQA test fails in seahorse
by bugzilla_noreply＠novell.com 04 Feb '19

04 Feb '19

http://bugzilla.opensuse.org/show_bug.cgi?id=1118803 Bug ID: 1118803 Summary: [Build 361.3] openQA test fails in seahorse Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.1 Hardware: Other URL: https://openqa.opensuse.org/tests/810704/modules/seaho rse/steps/9 OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: GNOME Assignee: bnc-team-gnome(a)forge.provo.novell.com Reporter: jrivrain(a)suse.com QA Contact: qa-bugs(a)suse.de Found By: --- Blocker: --- Created attachment 792198 --> http://bugzilla.opensuse.org/attachment.cgi?id=792198&action=edit serial output ## Observation openQA test in scenario opensuse-15.1-DVD-x86_64-extra_tests_on_gnome@64bit fails in [seahorse](https://openqa.opensuse.org/tests/810704/modules/seahorse/steps/9) I tried to reproduce the failure manually, but it did not fail. it seems to happen occasionally, since it already happened here with build 351.3 : https://openqa.opensuse.org/tests/801138#step/seahorse/9 ## Reproducible Fails since (at least) Build [361.3](https://openqa.opensuse.org/tests/810704) (current job) ## Expected result Last good: [361.2](https://openqa.opensuse.org/tests/809939) (or more recent) ## Further details Always latest result in this scenario: [latest](https://openqa.opensuse.org/tests/latest?distri=opensuse&test=extra… -- You are receiving this mail because: You are on the CC list for the bug.

1 3

[Bug 1124118] New: fonts-config: use of uninitialized value
by bugzilla_noreply＠novell.com 04 Feb '19

04 Feb '19

http://bugzilla.suse.com/show_bug.cgi?id=1124118 Bug ID: 1124118 Summary: fonts-config: use of uninitialized value Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Other Assignee: pgajdos(a)suse.com Reporter: kukuk(a)suse.com QA Contact: qa-bugs(a)suse.de Found By: --- Blocker: --- During update to the latest openSUSE Tumbleweed snapshot I saw this: Output of xorg-x11-fonts-core-7.6-35.2.noarch.rpm %posttrans script: Use of uninitialized value $ENV{"HOME"} in concatenation (.) or string at /usr/sbin/fonts-config line 391. -- You are receiving this mail because: You are on the CC list for the bug.

1 4

[Bug 1123898] new rule for libmtp-udev
by bugzilla_noreply＠novell.com 04 Feb '19

04 Feb '19

http://bugzilla.suse.com/show_bug.cgi?id=1123898 http://bugzilla.suse.com/show_bug.cgi?id=1123898#c5 --- Comment #5 from Marcus Meissner <meissner(a)suse.com> --- hmpf, i see android-tools ios gone... not sure if it wasw repalced by anything. you can add least add the rule to libmtp rules even if its not a libmtp device -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1123898] new rule for libmtp-udev
by bugzilla_noreply＠novell.com 04 Feb '19

04 Feb '19

http://bugzilla.suse.com/show_bug.cgi?id=1123898 http://bugzilla.suse.com/show_bug.cgi?id=1123898#c4 --- Comment #4 from Marcus Meissner <meissner(a)suse.com> --- but this is probably just the ADP bridge, not MTP. android-tools adb rules should probably learn about 2a70 vendor: /usr/lib/udev/rules.d/51-android.rules -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1120061] New: VUL-1: CVE-2018-20230: pspp: a heap-based buffer overflow in read_bytes_internal can cause DOS
by bugzilla_noreply＠novell.com 04 Feb '19

04 Feb '19

http://bugzilla.opensuse.org/show_bug.cgi?id=1120061 Bug ID: 1120061 Summary: VUL-1: CVE-2018-20230: pspp: a heap-based buffer overflow in read_bytes_internal can cause DOS Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.3 Hardware: Other URL: https://smash.suse.de/issue/221456/ OS: Other Status: NEW Severity: Minor Priority: P5 - None Component: Security Assignee: opensuse.lietuviu.kalba(a)gmail.com Reporter: atoptsoglou(a)suse.com QA Contact: security-team(a)suse.de Found By: Security Response Team Blocker: --- CVE-2018-20230 An issue was discovered in PSPP 1.2.0. There is a heap-based buffer overflow at the function read_bytes_internal in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-20230 http://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-20230.html http://www.cvedetails.com/cve/CVE-2018-20230/ https://bugzilla.redhat.com/show_bug.cgi?id=1660318 -- You are receiving this mail because: You are on the CC list for the bug.

1 5

[Bug 1124102] VUL-0: CVE-2015-6587: openafs: vlserver allows remote authenticated users to cause a denial of service (out-of-bounds read and crash) via a crafted regular expression in a VL_ListAttributesN2 RPC.
by bugzilla_noreply＠novell.com 04 Feb '19

04 Feb '19

http://bugzilla.suse.com/show_bug.cgi?id=1124102 http://bugzilla.suse.com/show_bug.cgi?id=1124102#c2 Marcus Meissner <meissner(a)suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution|--- |UPSTREAM Flags|needinfo?(meissner(a)suse.com | |) | --- Comment #2 from Marcus Meissner <meissner(a)suse.com> --- its weird it was opened this time. -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1124121] New: security/sshguard: Unable to parse SSH invalid user entries, version bump request
by bugzilla_noreply＠novell.com 04 Feb '19

04 Feb '19

http://bugzilla.opensuse.org/show_bug.cgi?id=1124121 Bug ID: 1124121 Summary: security/sshguard: Unable to parse SSH invalid user entries, version bump request Classification: openSUSE Product: openSUSE.org Version: unspecified Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: 3rd party software Assignee: meissner(a)suse.com Reporter: tiziano.mueller(a)chem.uzh.ch QA Contact: bnc-team-screening(a)forge.provo.novell.com Found By: --- Blocker: --- I have the following entries in my /var/log/sshguard-journal-tail: Feb 04 09:48:04 myserv sshd[47630]: Invalid user ericsson from 68.183.117.212 port 59314 Feb 04 09:48:04 myserv sshd[47630]: Received disconnect from 68.183.117.212 port 59314:11: Bye Bye [preauth] Feb 04 09:48:04 myserv sshd[47630]: Disconnected from invalid user ericsson 68.183.117.212 port 59314 [preauth] which gives me the following when debugging SSHGuard: tail /var/log/sshguard-journal-tail | env SSHGUARD_DEBUG=foo /usr/sbin/sshguard [...] --accepting rule at line 91 ("Feb 04 09:48:04 myserv sshd[47630]: ") yydebug: state 0, reading 262 (SYSLOG_BANNER_PID) yydebug: state 0, shifting to state 1 --accepting rule at line 126 ("Invalid user ericsson from ") yydebug: state 1, reading 272 (SSH_INVALUSERPREF) yydebug: state 1, shifting to state 8 --accepting rule at line 209 ("68.183.117.212") yydebug: state 8, reading 257 (IPv4) yydebug: state 8, shifting to state 60 yydebug: state 60, reducing by rule 27 (addr : IPv4) yydebug: after reduction, shifting from state 8 to state 63 yydebug: state 63, reducing by rule 35 (ssh_illegaluser : SSH_INVALUSERPREF addr) yydebug: after reduction, shifting from state 1 to state 49 yydebug: state 49, reducing by rule 30 (sshmsg : ssh_illegaluser) yydebug: after reduction, shifting from state 1 to state 37 yydebug: state 37, reducing by rule 14 (msg_single : sshmsg) yydebug: after reduction, shifting from state 1 to state 36 yydebug: state 36, reducing by rule 12 (logmsg : msg_single) yydebug: after reduction, shifting from state 1 to state 54 yydebug: state 54, reducing by rule 6 (syslogent : SYSLOG_BANNER_PID logmsg) yydebug: after reduction, shifting from state 0 to state 31 yydebug: state 31, reducing by rule 1 (text : syslogent) yydebug: after reduction, shifting from state 0 to state 29 --accepting rule at line 232 (" ") --accepting rule at line 231 ("port") yydebug: state 29, reading 260 (WORD) yydebug: error recovery discarding state 29 yydebug: error recovery discarding state 0 [...] and the IP is therefore never blocked, rendering SSHGuard useless. This is on SLES 15 with sshguard-1.7.1-bp150.2.4 from SUSE-PackageHub-15-Standard-Pool. A short test with a manually compiled SSHGuard 2.3.1 shows that this is fixed in the most recent version of SSHGuard. Furthermore, FirewallD support is included in SSHGuard starting from 2.0, which would also be useful since you deprecated the SuSEFirewall and switched to FirewallD. -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1124102] New: VUL-0: CVE-2015-6587: openafs: vlserver allows remote authenticated users to cause a denial of service (out-of-bounds read and crash) via a crafted regular expression in a VL_ListAttributesN2 RPC.
by bugzilla_noreply＠novell.com 04 Feb '19

04 Feb '19

http://bugzilla.opensuse.org/show_bug.cgi?id=1124102 Bug ID: 1124102 Summary: VUL-0: CVE-2015-6587: openafs: vlserver allows remote authenticated users to cause a denial of service (out-of-bounds read and crash) via a crafted regular expression in a VL_ListAttributesN2 RPC. Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.3 Hardware: Other URL: https://smash.suse.de/issue/224140/ OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Basesystem Assignee: christof.hanke(a)mpcdf.mpg.de Reporter: meissner(a)suse.com QA Contact: security-team(a)suse.de Found By: Security Response Team Blocker: --- CVE-2015-6587 The vlserver in OpenAFS before 1.6.13 allows remote authenticated users to cause a denial of service (out-of-bounds read and crash) via a crafted regular expression in a VL_ListAttributesN2 RPC. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-6587 -- You are receiving this mail because: You are on the CC list for the bug.

1 1