Gentoo Logo

Roundup: Permission bypass

Content:

1.  Gentoo Linux Security Advisory

Version Information

Advisory Reference GLSA 200805-21 / roundup
Release Date May 27, 2008
Latest Revision May 27, 2008: 01
Impact normal
Exploitable remote
Package Vulnerable versions Unaffected versions Architecture(s)
www-apps/roundup < 1.4.4-r1 >= 1.4.4-r1 All supported architectures

Related bugreports: #212488, #214666

Synopsis

A vulnerability in Roundup allows for bypassing permission restrictions.

2.  Impact Information

Background

Roundup is an issue-tracking system with command-line, web and e-mail interfaces.

Description

Philipp Gortan reported that the xml-rpc server in Roundup does not check property permissions (CVE-2008-1475). Furthermore, Roland Meister discovered multiple vulnerabilities caused by unspecified errors, some of which may be related to cross-site scripting (CVE-2008-1474).

Impact

A remote attacker could possibly exploit the first vulnerability to edit or view restricted properties via the list(), display(), and set() methods. The impact and attack vectors of the second vulnerability are unknown.

3.  Resolution Information

Workaround

There is no known workaround at this time.

Resolution

All Roundup users should upgrade to the latest version:

Code Listing 3.1: Resolution

# emerge --sync
# emerge --ask --oneshot --verbose ">=www-apps/roundup-1.4.4-r1"

4.  References

Print

Page updated May 27, 2008

Summary: This is a Gentoo Linux Security Advisory

Security Team
Contact Address

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.