Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
89
security advisorysecurity updatefedoraFedora 26: Critical XSS Vulnerability Found in CKEditor Image Plugin
## 4.9.2 https://ckeditor.com/cke4/release/CKEditor-4.9.2 ### Security Updates - Fixed XSS vulnerability in the Enhanced Image (image2) plugin reported by Kyaw Min Thein. - Issue summary: It was possible to execute XSS inside CKEditor using the tag and specially crafted HTML. Please note that the default presets (Basic/Standard/Full) do not include this plugin, so you are only at . --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-1361f39801 2018-05-10 19:10:38.100931 --------------------------------------------------------------------------------Name : ckeditor Product : Fedora 26 Version : 4.9.2 Release : 1.fc26 URL : https://ckeditor.com/ Summary : WYSIWYG text editor to be used inside web pages Description : CKEditor is a text editor to be used inside web pages. It's a WYSIWYG editor, which means that the text being edited on it looks as similar as possible to the results users have when publishing it. It brings to the web common editing features found on desktop editing applications like Microsoft Word and OpenOffice. --------------------------------------------------------------------------------Update Information: ## 4.9.2 https://ckeditor.com/cke4/release/CKEditor-4.9.2 ### Security Updates - Fixed XSS vulnerability in the Enhanced Image (image2) plugin reported by Kyaw Min Thein. - Issue summary: It was possible to execute XSS inside CKEditor using the tag and specially crafted HTML. Please note that the default presets (Basic/Standard/Full) do not include this plugin, so you are only at risk if you made a custom build and enabled this plugin. ## 4.9.1 https://ckeditor.com/cke4/release/CKEditor-4.9.1 ### Fixed Issues - \#1835: Fixed: Integration between CKFinder and File Browser plugin does not work. ## 4.9.0 https://ckeditor.com/cke4/release/CKEditor-4.9.0 ### New Features -\#932: Introduced Easy Image feature for inserting images that areautomatically rescaled, optimized, responsive and delivered through a blazing-fast CDN. Three new plugins were added to support it: - Easy Image - Cloud Services - Image Base - \#1338: Keystroke labels are displayed for function keys (like F7, F8). - \#643: The File Browser plugin can now upload files using XHR requests. This allows for setting custom HTTP headers using the config.fileTools_requestHeaders configuration option. - \#1365: The File Browser plugin uses XHR requests by default. - \#1399: Added the possibility to set CKEDITOR.config.startupFocus as start or end to specify where the editor focus should be after the initialization. - \#1441: The Magic Line plugin line element can now be identified by the data-cke-magic-line="1" attribute. ### Fixed Issues - \#595: Fixed: Pasting does not work on mobile devices. - \#869: Fixed: Empty selection clears cached clipboard data in the editor. - \#1419: Fixed: The Widget Selection plugin selects the editor content with the Alt+A key combination on Windows. - \#1274: Fixed: Balloon Toolbar does not match a single selected image using the contextDefinition.cssSelectormatcher. - \#1232: Fixed: Balloon Toolbar buttons should be registered as focusable elements. - \#1342: Fixed: Balloon Toolbar should be re-positioned after the change event. - \#1426: [IE8-9] Fixed: Missing Balloon Toolbar background in the Kama skin. Thanks to Christian Elmer! - \#1470: Fixed: Balloon Toolbar is not visible after drag and drop of a widget it is attached to. - \#1048: Fixed: Balloon Panel is not positioned properly when a margin is added to its non-static parent. - \#889: Fixed: Unclear error message for width and height fields in the Image and Enhanced Image plugins. - \#859: Fixed: Cannot edit a link after a double-click on the text in the link. - \#1013: Fixed: Paste from Word does not work correctly with the config.forcePasteAsPlainText option. - \#1356: Fixed: Border parse function does not allow spaces in the color value. - \#1010: Fixed:The CSS border shorthand property was incorrectly expanded ignoring the border-color style. - \#1535: Fixed: Widget mouseover border contrast is insufficient. -\#1516: Fixed: Fake selection allows removing content in read-only mode using the Backspace and Delete keys. - \#1570: Fixed: Fake selection allows cutting content in read-only mode using the Ctrl/Cmd + X keys. - \#1363: Fixed: Paste notification is unclear and it might confuse users. ### API Changes - \#1346: Balloon Toolbar context manager API is now available in the pluginDefinition.init method of the requiringplugin. - \#1530: Added the possibility to use custom icons for buttons. ### Other Changes - Updated SCAYT (Spell Check As You Type) and WebSpellChecker plugins: - SCAYT scayt_minWordLength configuration option now defaults to 3 instead of 4. -SCAYT default number of suggested words in the context menu changed to 3. -\#90: Fixed: Selection is lost on link creation if SCAYT highlights the word. - Fixed: SCAYT crashes when the browser localStorage is disabled. - [IE11] Fixed: Unable to get property type of undefined or null reference error in the browser console when SCAYT is disabled/enabled. - \#46: Fixed: Editing is blocked when remote spell checker server is offline. - Fixed: User Dictionary cannot be created in WSC due to You already have the dictionary error. - Fixed: Words with apostrophe ' on the replacement make the WSC dialog inaccessible. - Fixed: SCAYT/WSC causes the Uncaught TypeError error in the browser console. - \#1337: Updated the samples layout with the new CKEditor 4 logo and color scheme. - \#1591: CKBuilder and language tools are now downloaded over HTTPS. Thanks to August Detlefsen! --------------------------------------------------------------------------------ChangeLog: * Sun Apr 29 2018 Shawn Iwinski - 4.9.2-1 - Update to 4.9.2 (RHBZ #1556589) - Fix license files * Wed Feb 7 2018 Fedora Release Engineering - 4.8.0-2 - Rebuilt forhttps://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Thu Dec 14 2017 Shawn Iwinski - 4.8.0-1 - Update to 4.8.0 (RHBZ #1525735) * Sun Oct 8 2017 Shawn Iwinski - 4.7.3-1 - Update to 4.7.3 (RHBZ #1491261) * Wed Aug 30 2017 Shawn Iwinski - 4.7.2-1 - Update to 4.7.2 (RHBZ #1482711) * Wed Jul 26 2017 Fedora Release Engineering - 4.7.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild * Sat Jul 8 2017 Shawn Iwinski - 4.7.1-1 - Update to 4.7.1 (RHBZ #1455719) --------------------------------------------------------------------------------References: [ 1 ] Bug #1556589 - ckeditor-4.9.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1556589 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2018-1361f39801' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
May 10, 2018
•Critical
Fedora
89
security advisoryfedorasecurity fixFedora 26: 2018-1361f39801 Critical: CKEditor XSS Problem Fix
## 4.9.2 https://ckeditor.com/cke4/release/CKEditor-4.9.2 ### Security Updates - Fixed XSS vulnerability in the Enhanced Image (image2) plugin reported by Kyaw Min Thein. - Issue summary: It was possible to execute XSS inside CKEditor using the tag and specially crafted HTML. Please note that the default presets (Basic/Standard/Full) do not include this plugin, so you are only at . --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-1361f39801 2018-05-10 19:10:38.100931 --------------------------------------------------------------------------------Name : ckeditor Product : Fedora 26 Version : 4.9.2 Release : 1.fc26 URL : https://ckeditor.com/ Summary : WYSIWYG text editor to be used inside web pages Description : CKEditor is a text editor to be used inside web pages. It's a WYSIWYG editor, which means that the text being edited on it looks as similar as possible to the results users have when publishing it. It brings to the web common editing features found on desktop editing applications like Microsoft Word and OpenOffice. --------------------------------------------------------------------------------Update Information: ## 4.9.2 https://ckeditor.com/cke4/release/CKEditor-4.9.2 ### Security Updates - Fixed XSS vulnerability in the Enhanced Image (image2) plugin reported by Kyaw Min Thein. - Issue summary: It was possible to execute XSS inside CKEditor using the tag and specially crafted HTML. Please note that the default presets (Basic/Standard/Full) do not include this plugin, so you are only at risk if you made a custom build and enabled this plugin. ## 4.9.1 https://ckeditor.com/cke4/release/CKEditor-4.9.1 ### Fixed Issues - \#1835: Fixed: Integration between CKFinder and File Browser plugin does not work. ## 4.9.0 https://ckeditor.com/cke4/release/CKEditor-4.9.0 ### New Features -\#932: Introduced Easy Image feature for inserting images that areautomatically rescaled, optimized, responsive and delivered through a blazing-fast CDN. Three new plugins were added to support it: - Easy Image - Cloud Services - Image Base - \#1338: Keystroke labels are displayed for function keys (like F7, F8). - \#643: The File Browser plugin can now upload files using XHR requests. This allows for setting custom HTTP headers using the config.fileTools_requestHeaders configuration option. - \#1365: The File Browser plugin uses XHR requests by default. - \#1399: Added the possibility to set CKEDITOR.config.startupFocus as start or end to specify where the editor focus should be after the initialization. - \#1441: The Magic Line plugin line element can now be identified by the data-cke-magic-line="1" attribute. ### Fixed Issues - \#595: Fixed: Pasting does not work on mobile devices. - \#869: Fixed: Empty selection clears cached clipboard data in the editor. - \#1419: Fixed: The Widget Selection plugin selects the editor content with the Alt+A key combination on Windows. - \#1274: Fixed: Balloon Toolbar does not match a single selected image using the contextDefinition.cssSelectormatcher. - \#1232: Fixed: Balloon Toolbar buttons should be registered as focusable elements. - \#1342: Fixed: Balloon Toolbar should be re-positioned after the change event. - \#1426: [IE8-9] Fixed: Missing Balloon Toolbar background in the Kama skin. Thanks to Christian Elmer! - \#1470: Fixed: Balloon Toolbar is not visible after drag and drop of a widget it is attached to. - \#1048: Fixed: Balloon Panel is not positioned properly when a margin is added to its non-static parent. - \#889: Fixed: Unclear error message for width and height fields in the Image and Enhanced Image plugins. - \#859: Fixed: Cannot edit a link after a double-click on the text in the link. - \#1013: Fixed: Paste from Word does not work correctly with the config.forcePasteAsPlainText option. - \#1356: Fixed: Border parse function does not allow spaces in the color value. - \#1010: Fixed:The CSS border shorthand property was incorrectly expanded ignoring the border-color style. - \#1535: Fixed: Widget mouseover border contrast is insufficient. -\#1516: Fixed: Fake selection allows removing content in read-only mode using the Backspace and Delete keys. - \#1570: Fixed: Fake selection allows cutting content in read-only mode using the Ctrl/Cmd + X keys. - \#1363: Fixed: Paste notification is unclear and it might confuse users. ### API Changes - \#1346: Balloon Toolbar context manager API is now available in the pluginDefinition.init method of the requiringplugin. - \#1530: Added the possibility to use custom icons for buttons. ### Other Changes - Updated SCAYT (Spell Check As You Type) and WebSpellChecker plugins: - SCAYT scayt_minWordLength configuration option now defaults to 3 instead of 4. -SCAYT default number of suggested words in the context menu changed to 3. -\#90: Fixed: Selection is lost on link creation if SCAYT highlights the word. - Fixed: SCAYT crashes when the browser localStorage is disabled. - [IE11] Fixed: Unable to get property type of undefined or null reference error in the browser console when SCAYT is disabled/enabled. - \#46: Fixed: Editing is blocked when remote spell checker server is offline. - Fixed: User Dictionary cannot be created in WSC due to You already have the dictionary error. - Fixed: Words with apostrophe ' on the replacement make the WSC dialog inaccessible. - Fixed: SCAYT/WSC causes the Uncaught TypeError error in the browser console. - \#1337: Updated the samples layout with the new CKEditor 4 logo and color scheme. - \#1591: CKBuilder and language tools are now downloaded over HTTPS. Thanks to August Detlefsen! --------------------------------------------------------------------------------ChangeLog: * Sun Apr 29 2018 Shawn Iwinski - 4.9.2-1 - Update to 4.9.2 (RHBZ #1556589) - Fix license files * Wed Feb 7 2018 Fedora Release Engineering - 4.8.0-2 - Rebuilt forhttps://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Thu Dec 14 2017 Shawn Iwinski - 4.8.0-1 - Update to 4.8.0 (RHBZ #1525735) * Sun Oct 8 2017 Shawn Iwinski - 4.7.3-1 - Update to 4.7.3 (RHBZ #1491261) * Wed Aug 30 2017 Shawn Iwinski - 4.7.2-1 - Update to 4.7.2 (RHBZ #1482711) * Wed Jul 26 2017 Fedora Release Engineering - 4.7.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild * Sat Jul 8 2017 Shawn Iwinski - 4.7.1-1 - Update to 4.7.1 (RHBZ #1455719) --------------------------------------------------------------------------------References: [ 1 ] Bug #1556589 - ckeditor-4.9.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1556589 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2018-1361f39801' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
May 10, 2018
•Critical
Fedora
98
security advisorymoderatesecurity updateRed Hat RHSA-2011:0838-01 Moderate GIMP Buffer Overflow Threat
Updated gimp packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Moderate: gimp security update Advisory ID: RHSA-2011:0838-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2011:0838.html Issue date: 2011-05-31 CVE Names: CVE-2009-1570 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-1178 ==================================================================== 1. Summary: Updated gimp packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: RHEL Desktop Workstation (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 3. Description: The GIMP (GNU Image Manipulation Program) is an image composition and editing program. An integer overflow flaw, leading to a heap-based buffer overflow, was found in the GIMP's Microsoft Windows Bitmap (BMP) and Personal Computer eXchange (PCX) image file plug-ins. An attacker could create a specially-crafted BMP or PCX image file that, when opened, could cause the relevant plug-in to crash or, potentially, execute arbitrary code with the privileges of the user running the GIMP. (CVE-2009-1570, CVE-2011-1178) A heap-based buffer overflow flaw was found in the GIMP's Paint Shop Pro (PSP) image file plug-in. An attacker could create a specially-crafted PSP image filethat, when opened, could cause the PSP plug-in to crash or, potentially, execute arbitrary code with the privileges of the user running the GIMP. (CVE-2010-4543) A stack-based buffer overflow flaw was found in the GIMP's Lightning, Sphere Designer, and Gfig image filters. An attacker could create a specially-crafted Lightning, Sphere Designer, or Gfig filter configuration file that, when opened, could cause the relevant plug-in to crash or, potentially, execute arbitrary code with the privileges of the user running the GIMP. (CVE-2010-4540, CVE-2010-4541, CVE-2010-4542) Red Hat would like to thank Stefan Cornelius of Secunia Research for responsibly reporting the CVE-2009-1570 flaw. Users of the GIMP are advised to upgrade to these updated packages, which contain backported patches to correct these issues. The GIMP must be restarted for the update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259 5. Bugs fixed (http://bugzilla.redhat.com/): 537356 - CVE-2009-1570 Gimp: Integer overflow in the BMP image file plugin 666793 - CVE-2010-4540 Gimp: Stack-based buffer overflow in Lighting plug-in 689831 - CVE-2011-1178 Gimp: Integer overflow in the PCX image file plug-in 703403 - CVE-2010-4541 Gimp: Stack-based buffer overflow in SphereDesigner plug-in 703405 - CVE-2010-4542 Gimp: Stack-based buffer overflow in Gfig plug-in 703407 - CVE-2010-4543 Gimp: Heap-based buffer overflow in Paint Shop Pro (PSP) plug-in 6. Package List: Red Hat Enterprise Linux Desktop (v. 5client): Source: i386: gimp-2.2.13-2.0.7.el5_6.2.i386.rpm gimp-debuginfo-2.2.13-2.0.7.el5_6.2.i386.rpm gimp-libs-2.2.13-2.0.7.el5_6.2.i386.rpm x86_64: gimp-2.2.13-2.0.7.el5_6.2.x86_64.rpm gimp-debuginfo-2.2.13-2.0.7.el5_6.2.i386.rpm gimp-debuginfo-2.2.13-2.0.7.el5_6.2.x86_64.rpm gimp-libs-2.2.13-2.0.7.el5_6.2.i386.rpm gimp-libs-2.2.13-2.0.7.el5_6.2.x86_64.rpm RHEL Desktop Workstation (v. 5 client): Source: i386: gimp-debuginfo-2.2.13-2.0.7.el5_6.2.i386.rpm gimp-devel-2.2.13-2.0.7.el5_6.2.i386.rpm x86_64: gimp-debuginfo-2.2.13-2.0.7.el5_6.2.i386.rpm gimp-debuginfo-2.2.13-2.0.7.el5_6.2.x86_64.rpm gimp-devel-2.2.13-2.0.7.el5_6.2.i386.rpm gimp-devel-2.2.13-2.0.7.el5_6.2.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: i386: gimp-2.2.13-2.0.7.el5_6.2.i386.rpm gimp-debuginfo-2.2.13-2.0.7.el5_6.2.i386.rpm gimp-devel-2.2.13-2.0.7.el5_6.2.i386.rpm gimp-libs-2.2.13-2.0.7.el5_6.2.i386.rpm ia64: gimp-2.2.13-2.0.7.el5_6.2.ia64.rpm gimp-debuginfo-2.2.13-2.0.7.el5_6.2.ia64.rpm gimp-devel-2.2.13-2.0.7.el5_6.2.ia64.rpm gimp-libs-2.2.13-2.0.7.el5_6.2.ia64.rpm ppc: gimp-2.2.13-2.0.7.el5_6.2.ppc.rpm gimp-debuginfo-2.2.13-2.0.7.el5_6.2.ppc.rpm gimp-debuginfo-2.2.13-2.0.7.el5_6.2.ppc64.rpm gimp-devel-2.2.13-2.0.7.el5_6.2.ppc.rpm gimp-devel-2.2.13-2.0.7.el5_6.2.ppc64.rpm gimp-libs-2.2.13-2.0.7.el5_6.2.ppc.rpm gimp-libs-2.2.13-2.0.7.el5_6.2.ppc64.rpm s390x: gimp-2.2.13-2.0.7.el5_6.2.s390x.rpm gimp-debuginfo-2.2.13-2.0.7.el5_6.2.s390.rpm gimp-debuginfo-2.2.13-2.0.7.el5_6.2.s390x.rpm gimp-devel-2.2.13-2.0.7.el5_6.2.s390.rpm gimp-devel-2.2.13-2.0.7.el5_6.2.s390x.rpm gimp-libs-2.2.13-2.0.7.el5_6.2.s390.rpm gimp-libs-2.2.13-2.0.7.el5_6.2.s390x.rpm x86_64: gimp-2.2.13-2.0.7.el5_6.2.x86_64.rpm gimp-debuginfo-2.2.13-2.0.7.el5_6.2.i386.rpm gimp-debuginfo-2.2.13-2.0.7.el5_6.2.x86_64.rpm gimp-devel-2.2.13-2.0.7.el5_6.2.i386.rpm gimp-devel-2.2.13-2.0.7.el5_6.2.x86_64.rpm gimp-libs-2.2.13-2.0.7.el5_6.2.i386.rpm gimp-libs-2.2.13-2.0.7.el5_6.2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2009-1570 https://access.redhat.com/security/cve/CVE-2010-4540 https://access.redhat.com/security/cve/CVE-2010-4541 https://access.redhat.com/security/cve/CVE-2010-4542 https://access.redhat.com/security/cve/CVE-2010-4543 https://access.redhat.com/security/cve/CVE-2011-1178 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2011 Red Hat, Inc. . A significant security enhancement for GIMP on CentOS addresses various flaws with risk management strategies.. GIMP Security Update, Red Hat Advisory, Linux Updates. . LinuxSecurity.com Team
May 31, 2011
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!