Stay Secure with the Latest Linux Advisories

security advisorysecurity updateexploit

Mageia: 2021-0272 Moderate: Guacd Session Token Exploit Mitigated

Prior to 1.0.0, Apache Guacamole used a cookie for client-side storage of the user's session token. This cookie lacked the "secure" flag, which could allow an attacker eavesdropping on the network to intercept the user's session token if unencrypted HTTP requests are made to the same domain (CVE-2018-1340). . MGASA-2021-0272 - Updated guacd packages fix security vulnerabilities Publication date: 23 Jun 2021 URL: https://advisories.mageia.org/MGASA-2021-0272.html Type: security Affected Mageia releases: 7 CVE: CVE-2018-1340, CVE-2020-9497, CVE-2020-9498, CVE-2020-11997 Prior to 1.0.0, Apache Guacamole used a cookie for client-side storage of the user's session token. This cookie lacked the "secure" flag, which could allow an attacker eavesdropping on the network to intercept the user's session token if unencrypted HTTP requests are made to the same domain (CVE-2018-1340). Apache Guacamole 1.1.0 and older do not properly validate data received from RDP servers via static virtual channels. If a user connects to a malicious or compromised RDP server, specially-crafted PDUs could result in disclosure of information within the memory of the guacd process handling the connection (CVE-2020-9497). Apache Guacamole 1.1.0 and older may mishandle pointers involved in processing data received via RDP static virtual channels. If a user connects to a malicious or compromised RDP server, a series of specially-crafted PDUs could result in memory corruption, possibly allowing arbitrary code to be executed with the privileges of the running guacd process (CVE-2020-9498). Apache Guacamole 1.2.0 and older do not consistently restrict access to connection history based on user visibility. If multiple users share access to the same connection, those users may be able to see which other users have accessed that connection, as well as the IP addresses from which that connection was accessed, even if those users do not otherwise have permission to see other users (CVE-2020-11997). This is an update of guacd tolatest version to fix security issues. We also updated util-linux and ossp_uuid to make them co installable as guacd requires ossp_uuid. References: - https://bugs.mageia.org/show_bug.cgi?id=28158 - https://bugs.mageia.org/show_bug.cgi?id=24509 - https://bugs.mageia.org/show_bug.cgi?id=27593 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/32RWZPQ7FRP73BVKOQK27XV6TX47TT3R/ - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/WNS7UHBOFV6JHWH5XOEZTE3BREGRSSQ3/ - https://www.openwall.com/lists/oss-security/2021/01/18/1 - https://www.cve.org/CVERecord?id=CVE-2018-1340 - https://www.cve.org/CVERecord?id=CVE-2020-9497 - https://www.cve.org/CVERecord?id=CVE-2020-9498 - https://www.cve.org/CVERecord?id=CVE-2020-11997 SRPMS: - 7/core/guacd-1.3.0-1.mga7 - 7/core/util-linux-2.33.2-1.1.mga7 - 7/core/ossp_uuid-1.6.2-21.1.mga7 . Recent updates to guacd packages tackle major security vulnerabilities in Apache Guacamole, offering detailed insights on the flaws and the solutions implemented. Guacamole Security, Mageia Updates, RDP Security Issues, Session Token Exploitation, Apache Guacamole Patches. . LinuxSecurity.com Team

Jun 23, 2021 Mageia