diff options
| author | dbaio <dbaio@FreeBSD.org> | 2017-08-16 03:18:15 +0800 |
|---|---|---|
| committer | dbaio <dbaio@FreeBSD.org> | 2017-08-16 03:18:15 +0800 |
| commit | 3015a39b5192bd7bf8d29032c74226f9b525c033 (patch) | |
| tree | c8e832f9b5c0ef42596c6f562227da25f166b367 | |
| parent | 883ec7dc3a2f04387562b773a8219b2b47dbe7c1 (diff) | |
| download | freebsd-ports-gnome-3015a39b5192bd7bf8d29032c74226f9b525c033.tar.gz freebsd-ports-gnome-3015a39b5192bd7bf8d29032c74226f9b525c033.tar.zst freebsd-ports-gnome-3015a39b5192bd7bf8d29032c74226f9b525c033.zip | |
security/vuxml: Document vulnerability in sysutils/py-supervisor
PR: 221539
Submitted by: Franz Glasner <f.glasner@feldmann-mg.com>
Security: CVE-2017-11610
| -rw-r--r-- | security/vuxml/vuln.xml | 35 |
1 files changed, 35 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index aca0a5ff74d1..9c8288283601 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -58,6 +58,41 @@ Notes: * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="c9460380-81e3-11e7-93af-005056925db4"> + <topic>Supervisord -- An authenticated client can run arbitrary shell commands via malicious XML-RPC requests</topic> + <affects> + <package> + <name>py27-supervisor</name> + <range><lt>3.3.3,1</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>mnaberez reports:</p> + <blockquote cite="https://github.com/Supervisor/supervisor/issues/964#issuecomment-317551606"> + <p>supervisord can be configured to run an HTTP server on a TCP socket and/or a Unix domain socket. + The HTTP server is how supervisorctl communicates with supervisord. If an HTTP server has been + enabled, it will always serve both HTML pages and an XML-RPC interface. A vulnerability has been + found where an authenticated client can send a malicious XML-RPC request to supervisord that + will run arbitrary shell commands on the server. The commands will be run as the same user as + supervisord. Depending on how supervisord has been configured, this may be root.</p> + <p>This vulnerability can only be exploited by an authenticated client or if supervisord has been + configured to run an HTTP server without authentication. If authentication has not been enabled, + supervisord will log a message at the critical level every time it starts.</p> + </blockquote> + </body> + </description> + <references> + <url>http://supervisord.org/changes.html</url> + <url>https://github.com/Supervisor/supervisor/issues/964#issuecomment-317551606</url> + <cvename>CVE-2017-11610</cvename> + </references> + <dates> + <discovery>2017-07-24</discovery> + <entry>2017-08-15</entry> + </dates> + </vuln> + <vuln vid="79bbec7e-8141-11e7-b5af-a4badb2f4699"> <topic>FreeRadius -- Multiple vulnerabilities</topic> <affects> |