Your message dated Tue, 24 Feb 2009 18:47:20 +0000
with message-id <e1lc2jm-00046l...@ries.debian.org>
and subject line Bug#516950: fixed in znc 0.066-1
has caused the Debian Bug report #516950,
regarding znc < 0.066 privilege escalation when using webadmin
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
516950: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=516950
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Package: znc
Version: 0.045-3+etch1
Tags: Security
Severity: critical
All ZNC versions which have webadmin contain a privilege escalation bug in
webadmin. This bug was fixed with znc 0.066.
A quote from the changelog[1]:
Webadmin doesn't properly validate user input. If you send a manipulated POST
request to webadmin's edit user page which includes newlines in e.g. the
QuitMessage field, this field will be written unmodified to the config. This way
you can add new lines to znc.conf. The new lines will not be parsed until the
next rehash or restart.
This can be done with nearly all input fields in webadmin. Because every user
can modify himself via webadmin, every user can exploit this bug.
[1] http://en.znc.in/wiki/ChangeLog/0.066
- --
"Do you know that books smell like nutmeg or some spice from a foreign land?"
-- Faber in Fahrenheit 451
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkmkLHQACgkQABixOSrV998/+gCePRf5EmG7t1+lztdsr+tE3m+3
jJsAoJwhjz7YdyvoLGjRyRSfCdNSClSh
=Hoee
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
Source: znc
Source-Version: 0.066-1
We believe that the bug you reported is fixed in the latest version of
znc, which is due to be installed in the Debian FTP archive:
znc-dbg_0.066-1_amd64.deb
to pool/main/z/znc/znc-dbg_0.066-1_amd64.deb
znc-dev_0.066-1_amd64.deb
to pool/main/z/znc/znc-dev_0.066-1_amd64.deb
znc-perl_0.066-1_amd64.deb
to pool/main/z/znc/znc-perl_0.066-1_amd64.deb
znc-webadmin_0.066-1_amd64.deb
to pool/main/z/znc/znc-webadmin_0.066-1_amd64.deb
znc_0.066-1.diff.gz
to pool/main/z/znc/znc_0.066-1.diff.gz
znc_0.066-1.dsc
to pool/main/z/znc/znc_0.066-1.dsc
znc_0.066-1_amd64.deb
to pool/main/z/znc/znc_0.066-1_amd64.deb
znc_0.066.orig.tar.gz
to pool/main/z/znc/znc_0.066.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 516...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Patrick Matthäi <patrick.matth...@web.de> (supplier of updated znc package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Tue, 24 Feb 2009 18:21:42 +0200
Source: znc
Binary: znc znc-dbg znc-dev znc-perl znc-webadmin
Architecture: source amd64
Version: 0.066-1
Distribution: unstable
Urgency: high
Maintainer: Patrick Matthäi <patrick.matth...@web.de>
Changed-By: Patrick Matthäi <patrick.matth...@web.de>
Description:
znc - an advanced IRC bouncer
znc-dbg - an advanced IRC bouncer (debugging symbols)
znc-dev - an advanced IRC bouncer (development headers)
znc-perl - an advanced IRC bouncer (Perl extension)
znc-webadmin - an advanced IRC bouncer (webadmin module)
Closes: 516950
Changes:
znc (0.066-1) unstable; urgency=high
.
* New upstream release.
- Severity high because it fixes a critical security flaw.
Closes: #516950
* znc-dev has to be arch:any, because it also gives back the used host
compiler.
Checksums-Sha1:
26ffc3fafcfcd37f4a6e5c8e161b2f3d0127e4b5 1046 znc_0.066-1.dsc
660f0694cda42f594dca7f2286dc460b1c0a3b65 387205 znc_0.066.orig.tar.gz
9da1697c15b798cf4316124285b8a79c07d666f6 7678 znc_0.066-1.diff.gz
e7291ed3279a9151cc946b22dacefc71a08bd9d5 769582 znc_0.066-1_amd64.deb
7fb299539d5a7d25b79b2cd506496737346b8dca 4014966 znc-dbg_0.066-1_amd64.deb
91499de97e7486f0e7757f685bd36b1bfdfd38bd 50444 znc-dev_0.066-1_amd64.deb
9e59602cfe4f5642d12cb0a07582c60c956ee180 60720 znc-perl_0.066-1_amd64.deb
ffe14fcdf6ae934d4c4825f93add5a626cf9db3e 207630 znc-webadmin_0.066-1_amd64.deb
Checksums-Sha256:
313292ef048304959262f0196000e1599183b9195f92cee3815c4d95f7d26614 1046
znc_0.066-1.dsc
a49f5cc43a087a3f9c9a44f95897043e794e17449c7d449ef3320874a1e03cd3 387205
znc_0.066.orig.tar.gz
a3cd78e82a1ce6e56343f2f1f2b20696c40439111ddac6c9ba0dcd31582ae8d4 7678
znc_0.066-1.diff.gz
070b6a51f3d3a694d10d23fd82ba2c44fe2b3cfc943ce80a834a0e82870895fb 769582
znc_0.066-1_amd64.deb
39aa548d63c206c038d0466dc806362b9cc57c92141624c6fb1c3e24c565562a 4014966
znc-dbg_0.066-1_amd64.deb
ee37c4d635e9c352722d36be95ea9c339c3794f25394741ae37b9341447457cc 50444
znc-dev_0.066-1_amd64.deb
1f464d9c236f6d3aa06b5634729409cce6fa59dd2163cb194452ea06b59119df 60720
znc-perl_0.066-1_amd64.deb
e0e5d86058b79a38295091ae00d83111bee6803eeab9c0f3949ca48d727de23e 207630
znc-webadmin_0.066-1_amd64.deb
Files:
00bb57406ca2dc9b76b9d6e1f58bb1ec 1046 net optional znc_0.066-1.dsc
a462b024cf7075c2124685260378591e 387205 net optional znc_0.066.orig.tar.gz
5c966e0ffbf1f6bd0e41e2d08b7d9897 7678 net optional znc_0.066-1.diff.gz
072734bb173ed0337550373e60d3c574 769582 net optional znc_0.066-1_amd64.deb
8df51473a63c9f20d0253822c13c048c 4014966 net extra znc-dbg_0.066-1_amd64.deb
2ddbf2f18eac2e339aa7284576726825 50444 net optional znc-dev_0.066-1_amd64.deb
6ec84385948e2515dfec0d7abe67f847 60720 net optional znc-perl_0.066-1_amd64.deb
3be6f69415cc6e2c0a08be4b5e7933f6 207630 net optional
znc-webadmin_0.066-1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkmkNU8ACgkQ2XA5inpabMcfcgCcCQwgkTHCLEtOQXQFAWaM4RWJ
h94AnRs4AzC0MRgWZ6Ae9ZWptzLzGmS7
=MUl7
-----END PGP SIGNATURE-----
--- End Message ---
