End-of-Day report
Timeframe: Dienstag 23-07-2019 18:00 - Mittwoch 24-07-2019 18:00
Handler: Robert Waldner
Co-Handler: n/a
News
Videolan: Eine VLC-Lücke, die keine ist
Ein eher unbedeutender Fehler in einer Abhängigkeit des VLC-Players wird von Behörden fälschlich als schwere Sicherheitslücke klassifiziert und viele Medien übernehmen dies ungeprüft. Das Videolan-Projekt ist nicht erfreut.
https://www.golem.de/news/videolan-eine-vlc-luecke-die-keine-ist-1907-142758-rss.html
Exim: security release ahead (CVE-2019-13917)
We discovered a vulnerability. We consider the risk of an exploit as low, you need to have a fairly unusual runtime configuration. Neither our default runtime configuration nor the runtime configuration shipped by the Debian distribution is vulnerable.
This is a *heads-up* notice about the upcoming release. Coordinated Release Date (CRD) for Exim 4.92.1: Thu Jul 25 10:00:00 UTC 2019
https://seclists.org/oss-sec/2019/q3/63
Warnung: Schadsoftware mit angeblichem BSI-Absender verschickt
Derzeit verschicken Kriminelle per E-Mail Schadsoftware und gaukeln dabei vor, die Mails stammten vom BSI. Bislang bekannte Mails nutzen die Absenderadresse "
meldung at bsi-bund.org". Das Bundesamt für Sicherheit in der Informationstechnik (BSI) ist nicht Absender dieser Mails.
https://www.bsi.bund.de/DE/Presse/Kurzmeldungen/Meldungen/Schadsoftware-BSI-Mail-Fake_240719.html
Keine Ware trotz Zahlung: epic-media.shop
Konsument/innen auf der Suche nach Wasch- und Kaffeemaschinen, Spielkonsolen, Staubsaugern, Kameras und anderen technischen Geräten stoßen auf epic-media.shop. Gute Preise verlocken zu einem schnellen Einkauf. Doch Vorsicht: Bezahlte Ware wird nie geliefert, denn hinter der Website steckt nichts als Betrug!
https://www.watchlist-internet.at/news/keine-ware-trotz-zahlung-epic-mediashop/
Vulnerabilities
Vuln: Poppler CVE-2019-9959 Integer Overflow Vulnerability
Poppler is prone to an integer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. Attackers can exploit this issue to cause denial-of-service conditions.
http://www.securityfocus.com/bid/109342
Vuln: GNU Binutils libiberty CVE-2019-14250 Integer Overflow Vulnerability
GNU Binutils is prone to an integer overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition.
http://www.securityfocus.com/bid/109354
Serious Remote Code Execution Flaw Affects ProFTPD Powered FTP Servers
... it's important to note that not every FTP server running vulnerable ProFTPD can be hijacked remotely, since the attacker requires log-in to the respective targeted server, or the server should have anonymous access enabled.
https://thehackernews.com/2019/07/linux-ftp-server-security.html
HAProxy CVE-2019-14241 Remote Denial of Service Vulnerability
Attackers can exploit this issue to crash the affected application, denying service to legitimate users. Versions prior to HAProxy 1.9.9 and 2.0.3 are vulnerable.
https://www.securityfocus.com/bid/109352/discuss
D-Link DSL-2750U Multiple Authentication Bypass Vulnerabilities
An attacker can exploit these issues to bypass authentication mechanism and perform unauthorized actions. This may lead to further attacks. D-Link DSL-2750U Router 1.11 is vulnerable; other versions may also be affected.
https://www.securityfocus.com/bid/109351/discuss
Security updates for Wednesday
Security updates have been issued by Debian (kernel, linux-4.9, and neovim), Fedora (slurm), openSUSE (ImageMagick, libgcrypt, libsass, live555, mumble, neovim, and teeworlds), Oracle (java-1.7.0-openjdk, java-1.8.0-openjdk, and java-11-openjdk), Red Hat (java-1.7.0-openjdk), Scientific Linux (java-1.7.0-openjdk), SUSE (glibc and openexr), and Ubuntu (mysql-5.7 and patch).
https://lwn.net/Articles/794511/
Synology-SA-19:31 SRM
A vulnerability allows remote authenticated users to set a new password without verification via a susceptible version of Synology Router Manager (SRM).
https://www.synology.com/en-global/support/security/Synology_SA_19_31
Security Advisory - TLS Certificate Verification Vulnerability in Huawei 7900 IP Phones
http://www.huawei.com/en/psirt/security-advisories/2019/huawei-sa-20190724-01-7900-en
IBM Security Bulletin: IBM Cloud Private - Session not invalidated on logout (CVE-2019-4439)
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-ibm-cloud-private-session-not-invalidated-on-logout-cve-2019-4439/
IBM Security Bulletin: In IBM Cloud Private on OpenShift icp-scc SecurityContextContraints is erroneously assigned to all pods in all namespaces
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-in-ibm-cloud-private-on-openshift-icp-scc-securitycontextcontraints-is-erroneously-assigned-to-all-pods-in-all-namespaces/
IBM Security Bulletin: Vulnerability in IBM Java SDK affects IBM Virtualization Engine TS7700 - April 2019
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-vulnerability-in-ibm-java-sdk-affects-ibm-virtualization-engine-ts7700-april-2019/
IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect IBM® Db2®.
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-and-ibm-java-runtime-affect-ibm-db2-5/
IBM Security Bulletin: Potential denial of service vulnerability in IBM Decision Optimization for Watson Studio Local
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-potential-denial-of-service-vulnerability-in-ibm-decision-optimization-for-watson-studio-local/
IBM Security Bulletin: Rational Build Forge Security Advisory for Apache HTTP Server (CVE-2019-0196;CVE-2019-0197;CVE-2019-0211;CVE-2019-0215;CVE-2019-0217; and CVE-2019-0220)
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-rational-build-forge-security-advisory-for-apache-http-server-cve-2019-0196cve-2019-0197cve-2019-0211cve-2019-0215cve-2019-0217-and-cve-2019-0220/
IBM Security Bulletin: IBM Cloud Private for Data is affected multiple security vulnerabilities in IBM Cloud Private Kubernetes
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-ibm-cloud-private-for-data-is-affected-multiple-security-vulnerabilities-in-ibm-cloud-private-kubernetes/
IBM Security Bulletin: IBM QRadar SIEM is vulnerable to CSRF attack (CVE-2019-4212)
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-ibm-qradar-siem-is-vulnerable-to-csrf-attack-cve-2019-4212/
IBM Security Bulletin: Vulnerabilities in Eclipse OpenJ9, Oracle Java SE, and IBM WebSphere Application Server affect IBM Watson Compare and Comply for IBM Cloud Private for Data
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-vulnerabilities-in-eclipse-openj9-oracle-java-se-and-ibm-websphere-application-server-affect-ibm-watson-compare-and-comply-for-ibm-cloud-private-for-data/
IBM Security Bulletin: IBM Cloud Private for Data is affected by vulnerabilities in the Setup package. CVE-2018-1113
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-ibm-cloud-private-for-data-is-affected-by-vulnerabilities-in-the-setup-package-cve-2018-1113/
NTP vulnerability CVE-2019-11331
https://support.f5.com/csp/article/K09940637