Fedora has issued an advisory on August 2: https://lists.fedoraproject.org/pipermail/package-announce/2013-August/114144.html Mageia 2 is not affected, as only version 1.0 of znc is affected. Patched packages uploaded for Mageia 3 and Cauldron. Advisory: ======================== Updated znc packages fix security vulnerability: Multiple vulnerabilities were reported in ZNC version 1.0 which can be exploited by malicious authenticated users to cause a denial of service. These flaws are due to errors when handling the "editnetwork", "editchan", "addchan", and "delchan" page requests; they can be exploited to cause a NULL pointer dereference (CVE-2013-2130). References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2130 https://lists.fedoraproject.org/pipermail/package-announce/2013-August/114144.html ======================== Updated packages in core/updates_testing: ======================== znc-1.0-2.1.mga3 znc-devel-1.0-2.1.mga3 from znc-1.0-2.1.mga3.src.rpm Reproducible: Steps to Reproduce:
Testing complete mga3 64 No PoC's but the CVE is to do with the webadmin interface so checking that works. $ znc --makeconf answer all the questions it asks and allow it to start. created with user/password znctest/znctest Connected to the running znc instance with an irc client with the server as localhost and the port znc was configured to listen on (I used 3456) and the server password set to znctest/freenode:znctest Logged into the web interface at https://localhost:3456 and made sure it was still able to edit channels and networks. Killed znc with 'killall znc' It does seem to be missing a systemd service so i'll create a new bug for that.
Whiteboard: (none) => has_procedure mga3-64-ok
Testing complete mga3_32, ok for me nothing to report. same as comment 1
CC: (none) => geiger.david68210Whiteboard: has_procedure mga3-64-ok => has_procedure mga3-64-ok mga3-32-ok
Validating. Advisory from comment 0 uploaded. Could sysadmin please push from 3 core/updates_testing to updates Thanks!
Keywords: (none) => validated_updateCC: (none) => sysadmin-bugs
bug 11040 created for the systemd service
Update pushed: http://advisories.mageia.org/MGASA-2013-0257.html
Status: NEW => RESOLVEDCC: (none) => tmbResolution: (none) => FIXED