Bug 31387

Summary: php-smarty new security issue CVE-2018-25047
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: QA Team <qa-bugs>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: andrewsfarm, davidwhodgins, herman.viaene, mageia, sysadmin-bugs
Version: 8Keywords: advisory, validated_update
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard: MGA8-64-OK
Source RPM: php-smarty-4.1.1-1.mga8.src.rpm CVE: CVE-2018-25047
Status comment:

Description David Walser 2023-01-10 14:36:58 CET 
Debian-LTS has issued an advisory on January 5:
https://www.debian.org/lts/security/2023/dla-3262

The issue is fixed upstream in 4.2.1:
https://github.com/smarty-php/smarty/releases/tag/v4.2.1
David Walser 2023-01-10 14:37:06 CET

Status comment: (none) => Fixed upstream in 4.2.1

Marc Krämer 2023-01-11 06:07:28 CET

CVE: (none) => CVE-2018-25047

Comment 1 Marc Krämer 2023-01-11 06:15:08 CET 
It was discovered that there was a potential cross-site scripting vulnerability in smarty3, a widely-used PHP templating engine.

In Smarty before 3.1.47 and 4.x before 4.2.1, libs/plugins/function.mailto.php allows XSS. A web page that uses smarty_function_mailto, and that could be parameterized using GET or POST input parameters, could allow injection of JavaScript code by a user.

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25047
https://www.debian.org/lts/security/2023/dla-3262
https://github.com/smarty-php/smarty/releases/tag/v4.2.1

Updates in core/updates_testing:
php-smarty-4.2.1-1.mga8.noarch.rpm

SRPM:
php-smarty-4.2.1-1.mga8.src.rpm

Assignee: mageia => qa-bugs

David Walser 2023-01-11 08:28:12 CET

Status comment: Fixed upstream in 4.2.1 => (none)
CC: (none) => mageia

Comment 2 Herman Viaene 2023-01-18 16:21:19 CET 
MGA8-64 MATE on Acer Aspire 5253
No installation issues.
As in previoous updates, OK on clean install.

CC: (none) => herman.viaene
Whiteboard: (none) => MGA8-64-OK

Comment 3 Thomas Andrews 2023-01-18 20:08:09 CET 
Validating. Advisory in Comment 1.

Keywords: (none) => validated_update
CC: (none) => andrewsfarm, sysadmin-bugs

Dave Hodgins 2023-01-24 01:42:56 CET

CC: (none) => davidwhodgins
Keywords: (none) => advisory

Comment 4 Mageia Robot 2023-01-24 09:00:25 CET 
An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2023-0014.html

Status: NEW => RESOLVED
Resolution: (none) => FIXED