Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:19426
HistoryMar 17, 2008 - 12:00 a.m.

[SECURITY] [DSA 1520-1] New smarty packages fix arbitrary code execution

2008-03-1700:00:00
vulners.com
22
JSON

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Debian Security Advisory DSA-1520-1 [email protected]
http://www.debian.org/security/ Thijs Kinkhorst
March 16, 2008 http://www.debian.org/security/faq

Package : smarty
Vulnerability : insufficient input sanitising
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2008-1066
Debian Bug : 469492

It was discovered that the regex module in Smarty, a PHP templating engine,
allows attackers to call arbitrary PHP functions via templates using the
regex_replace plugin by a specially crafted search string.

For the stable distribution (etch), this problem has been fixed in version
2.6.14-1etch1.

For the old stable distribution (sarge), this problem has been fixed in
version 2.6.9-1sarge1.

For the unstable distribution (sid), this problem has been fixed in version
2.6.18-1.1.

We recommend that you upgrade your smarty package.

Upgrade instructions

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

http://security.debian.org/pool/updates/main/s/smarty/smarty_2.6.9-1sarge1.dsc
Size/MD5 checksum: 870 3c1955d0151a53532dab661fb9a9b7b3
http://security.debian.org/pool/updates/main/s/smarty/smarty_2.6.9.orig.tar.gz
Size/MD5 checksum: 141694 4ee0048de6a9b35f1b11b458493327f2
http://security.debian.org/pool/updates/main/s/smarty/smarty_2.6.9-1sarge1.diff.gz
Size/MD5 checksum: 3502 b1835fb9b611eb5ef3f26f23c21fbdbb

Architecture independent packages:

http://security.debian.org/pool/updates/main/s/smarty/smarty_2.6.9-1sarge1_all.deb
Size/MD5 checksum: 177048 39408bb8ec42a25956990f2e81bd2d7e

Debian GNU/Linux 4.0 alias etch

Source archives:

http://security.debian.org/pool/updates/main/s/smarty/smarty_2.6.14-1etch1.dsc
Size/MD5 checksum: 950 fa71b68819fe520b5616eec683276fdf
http://security.debian.org/pool/updates/main/s/smarty/smarty_2.6.14.orig.tar.gz
Size/MD5 checksum: 144986 9186796ddbc29191306338dea9d632a0
http://security.debian.org/pool/updates/main/s/smarty/smarty_2.6.14-1etch1.diff.gz
Size/MD5 checksum: 3814 8544db24358f72e091898f45c9fbc961

Architecture independent packages:

http://security.debian.org/pool/updates/main/s/smarty/smarty_2.6.14-1etch1_all.deb
Size/MD5 checksum: 184654 d2c9b4a558a052ab1c96bbdadfedafa5

These files will probably be moved into the stable distribution on
its next update.

For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: [email protected]
Package info: `apt-cache show <pkg>' and http://packages.debian.org/&lt;pkg&gt;
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iQEVAwUBR90FHmz0hbPcukPfAQLweQgAmRduFuq43IcPo6RV2RRdVvlHgZzE4/qZ
Uvo0O8j6jmu6w4bxfxaMWOEZvIpNO+T9FRhPhmCW3mulip1htaKCeVNaY54w9NCV
C+5j3kiPFINyZPTDsOmL8vS5RrpCmA/9G1MiT2KHflbDObbDf86cqQ+/fxDBmz2V
mgPLh3nm5ZC3lwXB+hySbMBuJY2EkOEzY4bF6lqoD5oxtjzBi9uuWSETTknpgnLB
aPQgBMehy3yt8zMO55Po9jTXJ7Hnmqx1HsgsP0HZmd4LtdyBAg3h/kPDyVU5IDfr
EUX+eKT2jpgj5PutxG4zHRU/xS5M/VIgFHdMCk1JylFKfzaFUCHwug==
=Pb7P
-----END PGP SIGNATURE-----

Related

nessus 7
fedora 3
openvas 12
ubuntucve 1
securityvulns 2
altlinux 2
prion 1
gentoo 2
debian 1
cve 1
redhatcve 1
nessus
nessus
Fedora 8 : php-pear-PhpDocumentor-1.4.1-2.fc8 (2008-2656)
2008-03-28 00:00:00
openSUSE 10 Security Update : moodle (moodle-5109)
2008-03-21 00:00:00
Debian DSA-1520-1 : smarty - insufficient input sanitising
2008-03-17 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: gallery2-2.2.4-3.fc7
2008-04-17 03:57:05
[SECURITY] Fedora 8 Update: gallery2-2.2.4-3.fc8
2008-04-17 03:53:35
[SECURITY] Fedora 8 Update: php-pear-PhpDocumentor-1.4.1-2.fc8
2008-03-26 17:10:33
openvas
openvas
Fedora Update for gallery2 FEDORA-2008-2650
2009-02-16 00:00:00
Fedora Update for php-pear-PhpDocumentor FEDORA-2008-2656
2009-02-16 00:00:00
Fedora Update for gallery2 FEDORA-2008-2587
2009-02-16 00:00:00
ubuntucve
ubuntucve
CVE-2008-1066
2008-02-28 00:00:00
securityvulns
securityvulns
[ GLSA 201111-04 ] phpDocumentor: Function call injection
2011-11-21 00:00:00
Daily web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2008-03-17 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package smarty version 2.6.19-alt1
2008-03-12 00:00:00
Security fix for the ALT Linux 7 package smarty version 2.6.19-alt1
2008-03-12 00:00:00
prion
prion
Spoofing
2008-02-28 20:44:00
gentoo
gentoo
phpDocumentor: Function call injection
2011-11-11 00:00:00
Smarty: Multiple vulnerabilities
2010-06-02 00:00:00
debian
debian
[SECURITY] [DSA 1520-1] New smarty packages fix arbitrary code execution
2008-03-16 11:36:42
cve
cve
CVE-2008-1066
2008-02-28 20:44:00
redhatcve
redhatcve
CVE-2008-1066
2019-10-04 21:51:22
JSON
Related for SECURITYVULNS:DOC:19426
nessus7fedora3openvas12ubuntucve1securityvulns2altlinux2prion1gentoo2debian1cve1redhatcve1