|
|
>> Fedora Security Update Fixes Wesnoth WML Directory Traversal Issue
|
Title : Fedora Security Update Fixes Wesnoth WML Directory Traversal Issue
VUPEN ID : VUPEN/ADV-2007-4080
CVE ID : CVE-2007-5742
Rated as : Moderate Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-12-04
|
A vulnerability has been identified in Fedora, which could be exploited by attackers to disclose sensitive information. This issue is caused by an error in Wesnoth. For additional information, see : VUPEN/ADV-2007-4026
Affected Products
Fedora 7
Fedora 8
Solution
Upgrade the affected packages :
8a79e4cbd5476d168aff26ad9925037d45a7de75 wesnoth-1.2.8-2.fc7.ppc64.rpm
c88376bcbe61d6876939566f23ae2c1713ddf81c wesnoth-debuginfo-1.2.8-2.fc7.ppc64.rpm
f0685889b521fa36038efb78494c46e6e988f440 wesnoth-tools-1.2.8-2.fc7.ppc64.rpm
879926e777a32ab2508caff125b61d48a8a80c49 wesnoth-server-1.2.8-2.fc7.ppc64.rpm
1a2ed1afc75a410b38b6b079a79c2050ff0e1401 wesnoth-tools-1.2.8-2.fc7.i386.rpm
35307a97ec77a65fdf0382b650f74afd81a8eee1 wesnoth-debuginfo-1.2.8-2.fc7.i386.rpm
7ad05b4f5b1e6eda55d08b0af9a47de56404ad65 wesnoth-server-1.2.8-2.fc7.i386.rpm
0474082fa4d8a9676db26791fb4e4ac8d683c589 wesnoth-1.2.8-2.fc7.i386.rpm
c884be9ad51e26316e77703a39fe3120b96967c2 wesnoth-debuginfo-1.2.8-2.fc7.x86_64.rpm
7e9f5d2de8803325f528e7580e9f234a81c28f7c wesnoth-tools-1.2.8-2.fc7.x86_64.rpm
ecd129bc88f0600b8a6e223eb88872cec894ec07 wesnoth-1.2.8-2.fc7.x86_64.rpm
c447a4c258eb5d9b6043b9e4ca490e88a62fa1cc wesnoth-server-1.2.8-2.fc7.x86_64.rpm
9e87e04252f7a31c832e3038762776c3dccc5430 wesnoth-tools-1.2.8-2.fc7.ppc.rpm
e8fb513a19903533fb3b99af85b7f9eb3524b476 wesnoth-server-1.2.8-2.fc7.ppc.rpm
5e8697a3f65b2ce113dd51a505e2025c90ef5999 wesnoth-1.2.8-2.fc7.ppc.rpm
539948d28d45b60df37082896d1c5fb3b9b1bbc1 wesnoth-debuginfo-1.2.8-2.fc7.ppc.rpm
f7de361fea0220732eac9d018090f5bc52aa7264 wesnoth-1.2.8-2.fc7.src.rpm
6f916998475b66b99309800acd229552d0573dea wesnoth-server-1.2.8-2.fc8.ppc64.rpm
4e46ad14203beb4d718a6742b88ed424c8480bd9 wesnoth-1.2.8-2.fc8.ppc64.rpm
f6deb833ae98139184e6925e253bef54d5b5b2ef wesnoth-tools-1.2.8-2.fc8.ppc64.rpm
b58935fbc0e83dbf164624c446c22f362d87b167 wesnoth-debuginfo-1.2.8-2.fc8.ppc64.rpm
de706c26e2e00e1a9feb433791d580ac27f2156c wesnoth-debuginfo-1.2.8-2.fc8.i386.rpm
c1e190224a92b89e763ef92c563708b8db15c299 wesnoth-server-1.2.8-2.fc8.i386.rpm
08562bcb4f9db36ae64dcb8f29db89d50d4636e9 wesnoth-tools-1.2.8-2.fc8.i386.rpm
e72d5956de78cd853149baa0737d53daf03a638d wesnoth-1.2.8-2.fc8.i386.rpm
b6db61acf07d8d19ce840be4b2f4bcb3eddc9367 wesnoth-server-1.2.8-2.fc8.x86_64.rpm
aeb291269dfec77d45c1a2907b5b8f5a8dc1a517 wesnoth-debuginfo-1.2.8-2.fc8.x86_64.rpm
956feb61d1099a51b46623e986682952bd6c1248 wesnoth-1.2.8-2.fc8.x86_64.rpm
ce38c2cd49fbb07eaa0617ae40a99398b231e1da wesnoth-tools-1.2.8-2.fc8.x86_64.rpm
02f53f427ece4d5650a07cb46e12071de2e8ef2e wesnoth-1.2.8-2.fc8.ppc.rpm
81f8454ff7374d468a2c7205416dbe1a6e8d7d00 wesnoth-debuginfo-1.2.8-2.fc8.ppc.rpm
804e5a7d92ac62556486ad1279e38ee5ef664fe5 wesnoth-server-1.2.8-2.fc8.ppc.rpm
31b6f8180a7c6b0ee9e454d7fb3f6842b7df22dc wesnoth-tools-1.2.8-2.fc8.ppc.rpm
093878597f6659cce86cc6783253775ce80b6c99 wesnoth-1.2.8-2.fc8.src.rpm
References
http://www.vupen.com/english/advisories/2007/4080
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00004.html
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00006.html
ChangeLog
2007-12-04 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
