[arch-commits] Commit in mantisbt/repos/community-any (5 files)
Maxime Gauduin
alucryd at archlinux.org
Wed Nov 5 15:35:00 UTC 2014
Date: Wednesday, November 5, 2014 @ 16:35:00
Author: alucryd
Revision: 121960
archrelease: copy trunk to community-any
Added:
mantisbt/repos/community-any/CVE-2014-8554.patch
(from rev 121959, mantisbt/trunk/CVE-2014-8554.patch)
mantisbt/repos/community-any/PKGBUILD
(from rev 121959, mantisbt/trunk/PKGBUILD)
mantisbt/repos/community-any/mantisbt.install
(from rev 121959, mantisbt/trunk/mantisbt.install)
Deleted:
mantisbt/repos/community-any/PKGBUILD
mantisbt/repos/community-any/mantisbt.install
---------------------+
CVE-2014-8554.patch | 35 +++++++++++++++++++
PKGBUILD | 92 +++++++++++++++++++++++++++-----------------------
mantisbt.install | 34 +++++++++---------
3 files changed, 102 insertions(+), 59 deletions(-)
Copied: mantisbt/repos/community-any/CVE-2014-8554.patch (from rev 121959, mantisbt/trunk/CVE-2014-8554.patch)
===================================================================
--- CVE-2014-8554.patch (rev 0)
+++ CVE-2014-8554.patch 2014-11-05 15:35:00 UTC (rev 121960)
@@ -0,0 +1,35 @@
+From 99ffb0afaff3409d0eaec78ac963214da0d2a079 Mon Sep 17 00:00:00 2001
+From: Damien Regad <dregad at mantisbt.org>
+Date: Thu, 30 Oct 2014 15:31:36 +0100
+Subject: [PATCH] SQL injection in mc_project_get_attachments()
+
+This is a follow-up on CVE-2014-1609 / issue #16880.
+
+Edwin Gozeling and Wim Visser from ITsec Security Services BV
+(http://www.itsec.nl) discovered that the fix in #16880 did not fully
+address the problem. Their research demonstrate that using a specially
+crafted project id parameter, an attacker could still perform an SQL
+injection.
+
+The same issue was also reported by Paul Richards in issue #17823.
+
+This patch fixes the problem by typecasting the Project ID parameter
+to Integer.
+
+Fixes #17812, CVE-2014-8554
+---
+ api/soap/mc_project_api.php | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/api/soap/mc_project_api.php b/api/soap/mc_project_api.php
+index 8e6aae9..fe57b7b 100644
+--- a/api/soap/mc_project_api.php
++++ b/api/soap/mc_project_api.php
+@@ -655,6 +655,7 @@ function mc_project_get_attachments( $p_username, $p_password, $p_project_id ) {
+ return mci_soap_fault_login_failed();
+ }
+
++ $p_project_id = (int)$p_project_id;
+ $g_project_override = $p_project_id;
+
+ # Check if project documentation feature is enabled.
Deleted: PKGBUILD
===================================================================
--- PKGBUILD 2014-11-05 15:34:50 UTC (rev 121959)
+++ PKGBUILD 2014-11-05 15:35:00 UTC (rev 121960)
@@ -1,42 +0,0 @@
-# $Id$
-# Maintainer: Maxime Gauduin <alucryd at archlinux.org>
-# Contributor: Alexander 'gridcol' Griesbaum <agrsbm at gmail.com>
-# Contributor: Ravenman <correo.cuervo at gmail.com>
-# Contributor: Anton Bazhenov <anton.bazhenov at gmail>
-# Contributor: Angel 'angvp' Velasquez <angvp at archlinux.com.ve>
-
-pkgname=mantisbt
-pkgver=1.2.17
-pkgrel=2
-pkgdesc='Web-based issue tracking system'
-arch=('any')
-url='http://www.mantisbt.org/'
-license=('GPL')
-depends=('php')
-optdepends=('apache: Web server to run MantisBT'
- 'curl: Twitter integration'
- 'gd: Graphs support'
- 'lighttpd: Web server to run MantisBT'
- 'mariadb: SQL database'
- 'nginx: Web server to run MantisBT'
- 'php-pgsql: PostgreSQL database')
-backup=('etc/webapps/mantisbt/config_inc.php')
-install='mantisbt.install'
-source=("http://downloads.sourceforge.net/mantisbt/mantisbt-${pkgver}.tar.gz")
-sha256sums=('4305295a1d3910516b6fa238e03e710c0bb5b30a01b3a908865799096207b243')
-
-package() {
- install -dm 755 "${pkgdir}"/{etc,usr/share}/webapps/mantisbt
- cp -dr --no-preserve='ownership' mantisbt-${pkgver}/* "${pkgdir}"/usr/share/webapps/mantisbt
-
- for f in {config_inc.php,custom_strings_inc.php,custom_constants_inc.php,custom_functions_inc.php}; do
- ln -s /etc/webapps/mantisbt/${f} "${pkgdir}"/usr/share/webapps/mantisbt/
- done
- cp "${pkgdir}"/usr/share/webapps/mantisbt/config_inc.php.sample "${pkgdir}"/etc/webapps/mantisbt/config_inc.php
-
- find "${pkgdir}" -type d -exec chmod 755 {} +
- find "${pkgdir}" -type f -exec chmod 644 {} +
- chown http:http -R "${pkgdir}"/usr/share/webapps/mantisbt
-}
-
-# vim: ts=2 sw=2 et:
Copied: mantisbt/repos/community-any/PKGBUILD (from rev 121959, mantisbt/trunk/PKGBUILD)
===================================================================
--- PKGBUILD (rev 0)
+++ PKGBUILD 2014-11-05 15:35:00 UTC (rev 121960)
@@ -0,0 +1,50 @@
+# $Id$
+# Maintainer: Maxime Gauduin <alucryd at archlinux.org>
+# Contributor: Alexander 'gridcol' Griesbaum <agrsbm at gmail.com>
+# Contributor: Ravenman <correo.cuervo at gmail.com>
+# Contributor: Anton Bazhenov <anton.bazhenov at gmail>
+# Contributor: Angel 'angvp' Velasquez <angvp at archlinux.com.ve>
+
+pkgname=mantisbt
+pkgver=1.2.17
+pkgrel=3
+pkgdesc='Web-based issue tracking system'
+arch=('any')
+url='http://www.mantisbt.org/'
+license=('GPL')
+depends=('php')
+optdepends=('apache: Web server to run MantisBT'
+ 'curl: Twitter integration'
+ 'gd: Graphs support'
+ 'lighttpd: Web server to run MantisBT'
+ 'mariadb: SQL database'
+ 'nginx: Web server to run MantisBT'
+ 'php-pgsql: PostgreSQL database')
+backup=('etc/webapps/mantisbt/config_inc.php')
+install='mantisbt.install'
+source=("http://downloads.sourceforge.net/mantisbt/mantisbt-${pkgver}.tar.gz"
+ 'CVE-2014-8554.patch')
+sha256sums=('4305295a1d3910516b6fa238e03e710c0bb5b30a01b3a908865799096207b243'
+ '3183477bcc3b69fc969b9d9502070816b2f8bd1ec387d02805b1bd901b471908')
+
+prepare() {
+ cd mantisbt-${pkgver}
+
+ patch -Np1 -i ../CVE-2014-8554.patch
+}
+
+package() {
+ install -dm 755 "${pkgdir}"/{etc,usr/share}/webapps/mantisbt
+ cp -dr --no-preserve='ownership' mantisbt-${pkgver}/* "${pkgdir}"/usr/share/webapps/mantisbt
+
+ for f in {config_inc.php,custom_strings_inc.php,custom_constants_inc.php,custom_functions_inc.php}; do
+ ln -s /etc/webapps/mantisbt/${f} "${pkgdir}"/usr/share/webapps/mantisbt/
+ done
+ cp "${pkgdir}"/usr/share/webapps/mantisbt/config_inc.php.sample "${pkgdir}"/etc/webapps/mantisbt/config_inc.php
+
+ find "${pkgdir}" -type d -exec chmod 755 {} +
+ find "${pkgdir}" -type f -exec chmod 644 {} +
+ chown http:http -R "${pkgdir}"/usr/share/webapps/mantisbt
+}
+
+# vim: ts=2 sw=2 et:
Deleted: mantisbt.install
===================================================================
--- mantisbt.install 2014-11-05 15:34:50 UTC (rev 121959)
+++ mantisbt.install 2014-11-05 15:35:00 UTC (rev 121960)
@@ -1,17 +0,0 @@
-pre_upgrade() {
- cd /usr/share/webapps/mantisbt
-
- cp mantis_offline.php.sample mantis_offline.php
-}
-
-post_upgrade() {
- cd /usr/share/webapps/mantisbt
-
- rm mantis_offline.php
-}
-
-post_remove() {
- rm -rf /usr/share/webapps/mantisbt
-}
-
-# vim: ts=2 sw=2 et:
Copied: mantisbt/repos/community-any/mantisbt.install (from rev 121959, mantisbt/trunk/mantisbt.install)
===================================================================
--- mantisbt.install (rev 0)
+++ mantisbt.install 2014-11-05 15:35:00 UTC (rev 121960)
@@ -0,0 +1,17 @@
+pre_upgrade() {
+ cd /usr/share/webapps/mantisbt
+
+ cp mantis_offline.php.sample mantis_offline.php
+}
+
+post_upgrade() {
+ cd /usr/share/webapps/mantisbt
+
+ rm mantis_offline.php
+}
+
+post_remove() {
+ rm -rf /usr/share/webapps/mantisbt
+}
+
+# vim: ts=2 sw=2 et:
More information about the arch-commits
mailing list