Sunday, June 19, 2016

Security Advisory 1601 - VLC media player

Security Advisory 1601

Summary           : Buffer Overflow in Processing QuickTime IMA Files
Date              : June 2016
Affected versions : VLC media player 2.2.3 and earlier
ID                : VideoLAN-SA-1601
CVE reference     : CVE-2016-5108

Details

A remote user can create a specially crafted QuickTime IMA file that, when loaded by the target user, will trigger a buffer overflow in DecodeAdpcmImaQT() in 'modules/codec/adpcm.c'.

Impact

If successful, a malicious third party could trigger either a crash of VLC or an arbitratry code execution with the privileges of the target user.

Threat mitigation

Exploitation of those issues requires the user to explicitly open a specially crafted file or stream.

ASLR and DEP help reduce exposure, but may be bypassed.

Workarounds

The user should refrain from opening files from untrusted third parties or accessing untrusted remote sites (or disable the VLC browser plugins), until the patch is applied.

Solution

VLC media player 2.2.4 addresses the issue.

References

The VideoLAN project: http://www.videolan.org/
VLC official GIT repository: http://git.videolan.org/?p=vlc.git

- wong chee tat :)

McAfee DAT version = 8200 (jun 18th 2016)

McAfee DAT version = 8200 (jun 18th 2016)

Link: here ( Select Yes. And it keeps getting updated daily. Region=US)

- wong chee tat :)

Om Mani Padme Hum

Om Mani Padme Hum

- wong chee tat :)

Adobe Security Bulletin - June 16th 2016

Adobe Security Bulletin

Release date: June 16, 2016

Vulnerability identifier: APSB16-18

Priority: See table below

CVE number: CVE-2016-4122, CVE-2016-4123, CVE-2016-4124, CVE-2016-4125, CVE-2016-4127, CVE-2016-4128, CVE-2016-4129, CVE-2016-4130, CVE-2016-4131, CVE-2016-4132, CVE-2016-4133, CVE-2016-4134, CVE-2016-4135, CVE-2016-4136, CVE-2016-4137, CVE-2016-4138, CVE-2016-4139, CVE-2016-4140, CVE-2016-4141, CVE-2016-4142, CVE-2016-4143, CVE-2016-4144, CVE-2016-4145, CVE-2016-4146, CVE-2016-4147, CVE-2016-4148, CVE-2016-4149, CVE-2016-4150, CVE-2016-4151, CVE-2016-4152, CVE-2016-4153, CVE-2016-4154, CVE-2016-4155, CVE-2016-4156, CVE-2016-4166, CVE-2016-4171

Platform: Windows, Macintosh, Linux and ChromeOS

Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and ChromeOS. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.

Adobe is aware of a report that an exploit for CVE-2016-4171 exists in the wild, and is being used in limited, targeted attacks. Please refer to APSA16-03 for additional details.

Product	Affected Versions	Platform
Adobe Flash Player Desktop Runtime	21.0.0.242 and earlier	Windows and Macintosh
Adobe Flash Player Extended Support Release	18.0.0.352 and earlier	Windows and Macintosh
Adobe Flash Player for Google Chrome	21.0.0.242 and earlier	Windows, Macintosh, Linux and ChromeOS
Adobe Flash Player for Microsoft Edge and Internet Explorer 11	21.0.0.242 and earlier	Windows 10 and 8.1
Adobe Flash Player for Linux	11.2.202.621 and earlier	Linux

To verify the version of Adobe Flash Player installed on your system, access the About Flash Player page, or right-click on content running in Flash Player and select "About Adobe (or Macromedia) Flash Player" from the menu. If you use multiple browsers, perform the check for each browser you have installed on your system.

Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version:

Product	Updated Versions	Platform	Priority rating	Availability
Adobe Flash Player Desktop Runtime	22.0.0.192	Windows and Macintosh	1	Flash Player Download Center Flash Player Distribution
Adobe Flash Player Extended Support Release	18.0.0.360	Windows and Macintosh	1	Extended Support
Adobe Flash Player for Google Chrome	22.0.0.192	Windows, Macintosh, Linux and ChromeOS	1	Google Chrome Releases
Adobe Flash Player for Microsoft Edge and Internet Explorer 11	22.0.0.192	Windows 10 and 8.1	1	Microsoft Security Advisory
Adobe Flash Player for Linux	11.2.202.626	Linux	3	Flash Player Download Center

Adobe recommends users of the Adobe Flash Player Desktop Runtime for Windows and Macintosh update to 22.0.0.192 via the update mechanism within the product when prompted [1], or by visiting the Adobe Flash Player Download Center.
Adobe recommends users of the Adobe Flash Player Extended Support Release should update to version 18.0.0.360 by visiting http://helpx.adobe.com/flash-player/kb/archived-flash-player-versions.html.
Adobe recommends users of Adobe Flash Player for Linux update to Adobe Flash Player 11.2.202.626 by visiting the Adobe Flash Player Download Center.
Adobe Flash Player installed with Google Chrome will be automatically updated to the latest Google Chrome version, which will include Adobe Flash Player 22.0.0.192 for Windows, Macintosh, Linux and Chrome OS.
Adobe Flash Player installed with Microsoft Edge and Internet Explorer for Windows 10 and 8.1 will be automatically updated to the latest version, which will include Adobe Flash Player 22.0.0.192.
Please visit the Flash Player Help page for assistance in installing Flash Player.

[1] Users of Flash Player 11.2.x or later for Windows, or Flash Player 11.3.x or later for Macintosh, who have selected the option to 'Allow Adobe to install updates' will receive the update automatically. Users who do not have the 'Allow Adobe to install updates' option enabled can install the update via the update mechanism within the product when prompted.

These updates resolve type confusion vulnerabilities that could lead to code execution (CVE-2016-4144, CVE-2016-4149).
These updates resolve use-after-free vulnerabilities that could lead to code execution (CVE-2016-4142, CVE-2016-4143, CVE-2016-4145, CVE-2016-4146, CVE-2016-4147, CVE-2016-4148).
These updates resolve heap buffer overflow vulnerabilities that could lead to code execution (CVE-2016-4135, CVE-2016-4136, CVE-2016-4138).
These updates resolve memory corruption vulnerabilities that could lead to code execution (CVE-2016-4122, CVE-2016-4123, CVE-2016-4124, CVE-2016-4125, CVE-2016-4127, CVE-2016-4128, CVE-2016-4129, CVE-2016-4130, CVE-2016-4131, CVE-2016-4132, CVE-2016-4133, CVE-2016-4134, CVE-2016-4137, CVE-2016-4141, CVE-2016-4150, CVE-2016-4151, CVE-2016-4152, CVE-2016-4153, CVE-2016-4154, CVE-2016-4155, CVE-2016-4156, CVE-2016-4166, CVE-2016-4171).
These updates resolve a vulnerability in the directory search path used to find resources that could lead to code execution (CVE-2016-4140).
These updates resolve a vulnerability that could be exploited to bypass the same-origin-policy and lead to information disclosure (CVE-2016-4139).

Aleksandar Nikolic of Cisco Talos (CVE-2016-4132)
Mateusz Jurczyk and Natalie Silvanovich of Google Project Zero (CVE-2016-4135, CVE-2016-4136, CVE-2016-4137, CVE-2016-4138)
willJ of Tencent PC Manager (CVE-2016-4122, CVE-2016-4123, CVE-2016-4124, CVE-2016-4125, CVE-2016-4127, CVE-2016-4128, CVE-2016-4129, CVE-2016-4130, CVE-2016-4131, CVE-2016-4134, CVE-2016-4166)
Nicolas Joly of Microsoft Vulnerability Research (CVE-2016-4142, CVE-2016-4143, CVE-2016-4144, CVE-2016-4145, CVE-2016-4146, CVE-2016-4147, CVE-2016-4148)
Wen Guanxing from Pangu LAB (CVE-2016-4150, CVE-2016-4152, CVE-2016-4153, CVE-2016-4154, CVE-2016-4155, CVE-2016-4156)
LMX of the Qihoo 360 Codesafe Team (CVE-2016-4141)
Dan Caselden of FireEye (CVE-2016-4140)
Wen Guanxing from Pangu LAB. (CVE-2016-4151)
Genwei Jiang of FireEye (CVE-2016-4149)
Sebastian Lekies of Google (CVE-2016-4139)
kelvinwang of Tencent PC Manager (CVE-2016-4133)
Anton Ivanov of Kaspersky (CVE-2016-4171)

- wong chee tat :)

Changelog EFW Community 3.2.0-beta1

Changelog EFW Community 3.2.0-beta1
===================================

* COMMUNITY-163 Automatically add the rpm channel in efw-upgrade using the major version

* COMMUNITY-167 Icon is missing, applying configuration

* COMMUNITY-196 Save username on efw-upgrade call

* CORE-1367 Replace deprecated Perl calls

* CORE-1379 3.2 cannot be installed on vmware 5.5

* CORE-1382 Update translations

* CORE-1410 Raid failing event not detected

* CORE-1413 Rpm database rebuild procedure slow

* CORE-1422 connection.cgi use 100% of CPUs

* CORE-1427 endian.logger raises an exception mixing message parameters and exc_info

* CORE-1429 Add SSL/TLS and STARTTLS support to email notifications

* CORE-1438 Signature updates may leave files in inconsistent state

* CORE-1448 Add default pythonrc

* CORE-1454 Add methods for matching/deleting iptables connections and conntack

* CORE-1455 Add an to DomainNameRegex for validating non-FQDN

* CORE-1456 Allow wildcards hostname in Dnsmasq configuration

* CORE-1467 Fix sshd reload call

* CORE-1472 Fix ebtables path

* EOS-1005 Forced dependency to db-bin because on some products was missing in

* EOS-1020 Duplicate package after an update that restarts sshd

* EOS-632 Implement multilib

* EOS-881 glibc - getaddrinfo stack-based buffer overflow CVE-2015-7547

* EOS-916 Update script used to create .pot files

* EOS-922 Introduce initrd in x86 kernels

* EOS-927 usb_modeswitch doesn't create ttyUSB if usb modem is plugged before boot start

* EOS-944 Grub: missing conffile in /etc/default/grub

* EOS-964 vim: remove backup file creation at all

* UTM-1389 DHCP failed to run

* UTM-1397 SSLv3 POODLE for SMTP Proxy

* UTM-1422 Squid going IPv6 on IPv6 sites resulting in (101) Network is unreachable

* UTM-1435 Disable ipv6 on postfix

* UTM-1440 Unable to disable Snort rules due to a TypeError

* UTM-1445 Snort rules based on "preprocessor ssl" prevent snort to start

* UTM-1451 Error joining Proxy not Active Directory

* UTM-1460 Can't download content filter signatures on Alpha 3.2.0

* UTM-1483 Allow at (@) character in certificates common name
Source: README, updated 2016-05-06

- wong chee tat :)

me think :)

Sunday, June 19, 2016