[Bug 1227393] New: VUL-0: CVE-2024-39844: znc: arbitrary code embedded into the kick reason executed while kicking someone on a channel
https://bugzilla.suse.com/show_bug.cgi?id=1227393 Bug ID: 1227393 Summary: VUL-0: CVE-2024-39844: znc: arbitrary code embedded into the kick reason executed while kicking someone on a channel Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.6 Hardware: Other URL: https://smash.suse.de/issue/412810/ OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: mpluskal@suse.com Reporter: smash_bz@suse.de QA Contact: security-team@suse.de CC: camila.matos@suse.com Target Milestone: --- Found By: Security Response Team Blocker: --- In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-39844 https://seclists.org/oss-sec/2024/q3/23 https://github.com/znc/znc/commit/8cbf8d628174ddf23da680f3f117dc54da0eb06e https://www.cve.org/CVERecord?id=CVE-2024-39844 https://github.com/znc/znc/releases/tag/znc-1.9.1 https://wiki.znc.in/Category:ChangeLog https://wiki.znc.in/ChangeLog/1.9.1 http://www.openwall.com/lists/oss-security/2024/07/03/9 -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1227393 https://bugzilla.suse.com/show_bug.cgi?id=1227393#c1 --- Comment #1 from Camila Camargo de Matos <camila.matos@suse.com> --- Patch: https://github.com/znc/znc/commit/8cbf8d628174ddf23da680f3f117dc54da0eb06e -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1227393 SMASH SMASH <smash_bz@suse.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Priority|P5 - None |P3 - Medium -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1227393 https://bugzilla.suse.com/show_bug.cgi?id=1227393#c3 Michael Vetter <mvetter@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |mvetter@suse.com --- Comment #3 from Michael Vetter <mvetter@suse.com> --- SR#1185717 to devel project. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1227393 Marcus Meissner <meissner@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Severity|Normal |Major Priority|P3 - Medium |P2 - High -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1227393 Michael Vetter <mvetter@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |david.mulder@suse.com -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1227393 https://bugzilla.suse.com/show_bug.cgi?id=1227393#c4 --- Comment #4 from David Mulder <david.mulder@suse.com> --- https://build.opensuse.org/request/show/1185807 -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1227393 https://bugzilla.suse.com/show_bug.cgi?id=1227393#c5 --- Comment #5 from Michael Vetter <mvetter@suse.com> --- (In reply to David Mulder from comment #4)
What was wrong about my submission? :) -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1227393 https://bugzilla.suse.com/show_bug.cgi?id=1227393#c6 Adam Majer <amajer@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |amajer@suse.com --- Comment #6 from Adam Majer <amajer@suse.com> --- There are 3 submit requests now. I guess the package is popular. https://build.opensuse.org/request/show/1185717 https://build.opensuse.org/request/show/1185807 https://build.opensuse.org/request/show/1185826 Hint: someone should accept one so it can go to Factory ;) -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1227393 https://bugzilla.suse.com/show_bug.cgi?id=1227393#c7 --- Comment #7 from David Mulder <david.mulder@suse.com> --- (In reply to Michael Vetter from comment #5)
(In reply to David Mulder from comment #4)
What was wrong about my submission? :)
Lol, the only thing wrong with it is I wasn't paying attention and thought you wanted me to do the submission. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1227393 https://bugzilla.suse.com/show_bug.cgi?id=1227393#c8 Michael Vetter <mvetter@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |IN_PROGRESS --- Comment #8 from Michael Vetter <mvetter@suse.com> --- (In reply to David Mulder from comment #7)
(In reply to Michael Vetter from comment #5)
(In reply to David Mulder from comment #4)
What was wrong about my submission? :)
Lol, the only thing wrong with it is I wasn't paying attention and thought you wanted me to do the submission.
I see :) https://build.opensuse.org/request/show/1186187 was accepted to Factory. I think now Leap 15.6 also needs a submission. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1227393 https://bugzilla.suse.com/show_bug.cgi?id=1227393#c9 --- Comment #9 from Marcus Meissner <meissner@suse.com> --- openSUSE-SU-2024:0203-1: An update that fixes one vulnerability is now available. Category: security (critical) Bug References: 1227393 CVE References: CVE-2024-39844 JIRA References: Sources used: openSUSE Backports SLE-15-SP6 (src): znc-1.9.1-bp156.2.3.1 -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com