Log

AVG-2328 edited at 27 Aug 2021 17:20:18
Status
- Vulnerable
+ Fixed
Affected
- 4.5-1
+ 4.4_git.1-1
Fixed
+ 4.5-1
Advisory qualified
- Yes
+ No
AVG-2328 edited at 27 Aug 2021 17:19:34
Severity
- Unknown
+ Medium
CVE-2021-40153 edited at 27 Aug 2021 17:19:34
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Directory traversal
Description
+ squashfs_opendir in unsquash-1.c in Squashfs-Tools before version 4.5 stores the filename in the directory entry; this is then used by unsquashfs to create the new file during the unsquash. The filename is not validated for traversal outside of the destination directory, and thus allows writing to locations outside of the destination.
References
+ https://github.com/plougher/squashfs-tools/issues/72
+ https://github.com/plougher/squashfs-tools/commit/79b5a555058eef4e1e7ff220c344d39f8cd09646
Notes
AVG-2328 created at 27 Aug 2021 17:18:11
Packages
+ squashfs-tools
Issues
+ CVE-2021-40153
Status
+ Vulnerable
Severity
+ Unknown
Affected
+ 4.5-1
Fixed
Ticket
Advisory qualified
+ Yes
References
Notes
CVE-2021-40153 created at 27 Aug 2021 17:18:11
AVG-2327 edited at 27 Aug 2021 17:16:20
Severity
- Unknown
+ Medium
CVE-2021-3746 edited at 27 Aug 2021 17:16:20
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary code execution
Description
+ A bug was discovered in the libtpms code that may cause access beyond the boundary of internal buffers. The vulnerability can be triggered by specially-crafted TPM 2 command packets that then trigger the issue when the state of the TPM 2's volatile state is marshalled/written.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1998588
+ https://github.com/stefanberger/libtpms/pull/237
+ https://github.com/stefanberger/libtpms/commit/ea62fd9679f8c6fc5e79471b33cfbd8227bfed72
+ https://github.com/stefanberger/libtpms/commit/1fb6cd9b8df05b5d6e381b31215193d6ada969df
Notes
AVG-2327 created at 27 Aug 2021 17:08:35
Packages
+ libtpms
Issues
+ CVE-2021-3746
Status
+ Vulnerable
Severity
+ Unknown
Affected
+ 0.8.4-1
Fixed
Ticket
Advisory qualified
+ Yes
References
Notes
CVE-2021-3746 created at 27 Aug 2021 17:08:35
AVG-2324 edited at 27 Aug 2021 12:26:43
Status
- Testing
+ Fixed
AVG-2300 edited at 27 Aug 2021 10:28:37
Status
- Vulnerable
+ Fixed
Fixed
+ 78.0.4093.184-1
AVG-2324 edited at 27 Aug 2021 10:27:56
Status
- Vulnerable
+ Testing
Fixed
+ 0.9.6-1
AVG-2234 edited at 27 Aug 2021 10:27:23
Status
- Vulnerable
+ Fixed
Fixed
+ 5.13.13.hardened1-1
AVG-1881 edited at 27 Aug 2021 10:26:41
Affected
- 5.12.19.hardened1-1
+ 5.13.13.hardened1-1