Ubuntu
znc package

Null pointer dereference in webadmin module [CVE-2013-2130]

Bug #1268658 reported by Thomas Ward
258
This bug affects 1 person
Affects Status Importance Assigned to Milestone
znc (Debian)
Fix Released
Unknown
znc (Ubuntu)
Fix Released
Undecided
Unassigned
Raring
Fix Released
Undecided
Unassigned
Saucy
Fix Released
Undecided
Unassigned
Trusty
Fix Released
Undecided
Unassigned

Bug Description

This is CVE-2013-2130.

This is/was Debian bug 720632 (http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=720632)

The security risk is that there is a null pointer dereference in the webadmin module.

This is fixed in Debian and ZNC 1.2 upstream.

Precise and Quantal are not affected as the CVE only affects ZNC 1.0 and newer, which means that it only applies to Raring, Saucy, and Trusty. See the notes below regarding Saucy and Trusty.

Raring is currently affected.

Saucy is "Fix Released" as the fix is already included as a patch in 1.0-5 from Debian, which is in Saucy. (02-CVE-2013-2130.diff in debian/patches for that package)

Trusty is "Fix Released" as the fix is incorporated into Debian 1.2-3 which is in Trusty right now.

See original description

CVE References

Thomas Ward (teward)
description: updated
Thomas Ward (teward)
description: updated
Thomas Ward (teward)
Changed in znc (Ubuntu Trusty):
status: Confirmed → Fix Released
Changed in znc (Ubuntu Saucy):
status: New → Fix Released
Thomas Ward (teward)
description: updated
Revision history for this message
Jamie Strandboge (jdstrand) wrote :

12.10 and earlier are not affected.

Changed in znc (Ubuntu Quantal):
status: New → Invalid
Changed in znc (Ubuntu Precise):
status: New → Invalid
Revision history for this message
Thomas Ward (teward) wrote :

The attached debdiff here is a debdiff to fix this issue in Raring. This patch is derived from upstream diffs, and was extracted from 1.0-5 in Debian via their snapshots system. The patch has been edited from Debian to remove comments that were inserted and replace them with DEP3 headers.

This debdiff also contains a debian/changelog entry in accordance with the procedures to package security updates.

Bug Watch Updater (bug-watch-updater)
Changed in znc (Debian):
status: Unknown → Fix Released
Revision history for this message
Thomas Ward (teward) wrote :

With the debdiff applied, the package successfully builds via sbuild in a raring chroot.

Changed in znc (Ubuntu Raring):
status: New → Confirmed
Dmitry Shachnev (mitya57)
no longer affects: znc (Ubuntu Precise)
no longer affects: znc (Ubuntu Quantal)
Revision history for this message
Marc Deslauriers (mdeslaur) wrote :

ACK on the debdiff. Package is building and will be released today. Thanks!

Changed in znc (Ubuntu Raring):
status: Confirmed → Fix Committed
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package znc - 1.0-2ubuntu1.1

---------------
znc (1.0-2ubuntu1.1) raring-security; urgency=low

  * SECURITY UPDATE: null pointer dereference in webadmin (LP: #1268658)
    - debian/patches/CVE-2013-2130.diff: Patch from Debian based on upstream to
      fix null pointer dereferences.
    - CVE-2013-2130
 -- Thomas Ward <email address hidden> Mon, 13 Jan 2014 12:20:57 -0500

Changed in znc (Ubuntu Raring):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.