---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secunia_vacancies/ ---------------------------------------------------------------------- TITLE: Bugzilla Two Information Disclosure Vulnerabilities SECUNIA ADVISORY ID: SA16021 VERIFY ADVISORY: http://secunia.com/advisories/16021/ CRITICAL: Less critical IMPACT: Exposure of sensitive information WHERE: >From remote SOFTWARE: Bugzilla 2.x http://secunia.com/product/396/ DESCRIPTION: Two vulnerabilities have been reported in Bugzilla, which can be exploited by malicious users to bypass certain security restrictions and gain knowledge of sensitive information. 1) Input passed to process_bug.cgi is not properly verified before being used. This makes it possible to change a flag on a bug report that the user does not have access to, and can be exploited to email the bug summary to the malicious user. The vulnerability affects versions 2.17.1 through 2.18.1, and development snapshots 2.19.1 through 2.19.3. 2) A race condition when marking a bug report as private in the database can be exploited to view the report when there is a MySQL replication lag. The vulnerability affects versions 2.17.1 and above. SOLUTION: Update to version 2.18.2. http://www.bugzilla.org/download PROVIDED AND/OR DISCOVERED BY: 1) Frédéric Buclin 2) Matthias Versen The vendor also credits Joel Peshkin and Myk Melez. ORIGINAL ADVISORY: http://www.bugzilla.org/security/2.18.1/ https://bugzilla.mozilla.org/show_bug.cgi?id=293159 https://bugzilla.mozilla.org/show_bug.cgi?id=292544 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------