FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 05:42:14 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
0baee383-356c-11e7-b9a9-50e549ebab6c	kauth: Local privilege escalation Albert Astals Cid reports: KAuth contains a logic flaw in which the service invoking dbus is not properly checked. This allows spoofing the identity of the caller and with some carefully crafted calls can lead to gaining root from an unprivileged account. Discovery 2017-05-10 Entry 2017-05-10 kdelibs < 4.14.30_4 kf5-kauth < 5.33.0_1 CVE-2017-8422 http://www.openwall.com/lists/oss-security/2017/05/10/3 https://www.kde.org/info/security/advisory-20170510-1.txt
f714d8ab-028e-11e7-8042-50e549ebab6c	kio: Information Leak when accessing https when using a malicious PAC file Albert Astals Cid reports: Using a malicious PAC file, and then using exfiltration methods in the PAC function FindProxyForURL() enables the attacker to expose full https URLs. This is a security issue since https URLs may contain sensitive information in the URL authentication part (user:password@host), and in the path and the query (e.g. access tokens). This attack can be carried out remotely (over the LAN) since proxy settings allow "Detect Proxy Configuration Automatically". This setting uses WPAD to retrieve the PAC file, and an attacker who has access to the victim's LAN can interfere with the WPAD protocols (DHCP/DNS+HTTP) and inject his/her own malicious PAC instead of the legitimate one. Discovery 2017-02-28 Entry 2017-03-11 kdelibs < 4.14.29_10 kf5-kio < 5.31.0_1 https://www.kde.org/info/security/advisory-20170228-1.txt

VuXML ID

Description

0baee383-356c-11e7-b9a9-50e549ebab6c

kauth: Local privilege escalation

Albert Astals Cid reports:

KAuth contains a logic flaw in which the service invoking dbus is not properly checked. This allows spoofing the identity of the caller and with some carefully crafted calls can lead to gaining root from an unprivileged account.

Discovery 2017-05-10
Entry 2017-05-10
kdelibs

< 4.14.30_4

kf5-kauth

< 5.33.0_1

CVE-2017-8422
http://www.openwall.com/lists/oss-security/2017/05/10/3
https://www.kde.org/info/security/advisory-20170510-1.txt

f714d8ab-028e-11e7-8042-50e549ebab6c

kio: Information Leak when accessing https when using a malicious PAC file

Albert Astals Cid reports:

Using a malicious PAC file, and then using exfiltration methods in the PAC function FindProxyForURL() enables the attacker to expose full https URLs.

This is a security issue since https URLs may contain sensitive information in the URL authentication part (user:password@host), and in the path and the query (e.g. access tokens).

This attack can be carried out remotely (over the LAN) since proxy settings allow "Detect Proxy Configuration Automatically". This setting uses WPAD to retrieve the PAC file, and an attacker who has access to the victim's LAN can interfere with the WPAD protocols (DHCP/DNS+HTTP) and inject his/her own malicious PAC instead of the legitimate one.

Discovery 2017-02-28
Entry 2017-03-11
kdelibs

< 4.14.29_10

kf5-kio

< 5.31.0_1

https://www.kde.org/info/security/advisory-20170228-1.txt