Bug 1138572 – VUL-0: CVE-2019-12816: znc: remote code execution in Modules.cpp

Bug 1138572 - (CVE-2019-12816) VUL-0: CVE-2019-12816: znc: remote code execution in Modules.cpp

(CVE-2019-12816)
Summary:	VUL-0: CVE-2019-12816: znc: remote code execution in Modules.cpp

Status:	RESOLVED FIXED

Classification:	openSUSE
Product:	openSUSE Distribution
Classification:	openSUSE
Component:	Security
Version:	Leap 42.3
Hardware:	Other Other

Priority:	P3 - Medium Severity: Major (vote)
Target Milestone:	---
Assigned To:	Martin Pluskal
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/235206/
Whiteboard:	obs:running:11862:important
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Create test case

Clone This Bug

Reported:	2019-06-18 12:34 UTC by Robert Frohl
Modified:	2020-01-28 23:53 UTC (History)
CC List:	0 users

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Robert Frohl 2019-06-18 12:34:39 UTC

CVE-2019-12816

Modules.cpp in ZNC before 1.7.4-rc1 allows remote authenticated non-admin users
to escalate privileges and execute arbitrary code by loading a module with a
crafted name.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-12816
http://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-12816.html
http://www.debian.org/security/2019/dsa-4463
http://www.cvedetails.com/cve/CVE-2019-12816/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12816
https://github.com/znc/znc/commit/8de9e376ce531fe7f3c8b0aa4876d15b479b7311
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925285
https://github.com/znc/znc/compare/be1b6bc...d1997d6
https://seclists.org/bugtraq/2019/Jun/23

Comment 1 Swamp Workflow Management 2019-06-27 09:20:07 UTC

This is an autogenerated message for OBS integration:
This bug (1138572) was mentioned in
https://build.opensuse.org/request/show/712237 Factory / znc

Comment 2 Swamp Workflow Management 2019-06-27 10:50:10 UTC

This is an autogenerated message for OBS integration:
This bug (1138572) was mentioned in
https://build.opensuse.org/request/show/712243 15.0+15.1+Backports:SLE-15 / znc

Comment 3 Tomáš Chvátal 2019-07-11 11:42:53 UTC

This is automated batch bugzilla cleanup.

The openSUSE 42.3 changed to end-of-life (EOL [1]) status. As such
it is no longer maintained, which means that it will not receive any
further security or bug fix updates.
As a result we are closing this bug.

If you can reproduce this bug against a currently maintained version of 
openSUSE (At this moment openSUSE Leap 15.1, 15.0 and Tumbleweed) please
feel free to reopen this bug against that version (!you must update the
"Version" component in the bug fields, do not just reopen please), or
alternatively create a new ticket.

Thank you for reporting this bug and we are sorry it could not be fixed
during the lifetime of the release.

[1] https://en.opensuse.org/Lifetime

Comment 4 Marcus Meissner 2019-07-12 06:46:58 UTC

submission is in the queue.

Comment 5 Swamp Workflow Management 2019-07-21 10:24:46 UTC

openSUSE-SU-2019:1775-1: An update that fixes two vulnerabilities is now available.

Category: security (important)
Bug References: 1130360,1138572
CVE References: CVE-2019-12816,CVE-2019-9917
Sources used:
openSUSE Leap 15.1 (src):    znc-1.7.4-lp151.2.3.1
openSUSE Leap 15.0 (src):    znc-1.7.4-lp150.28.1
openSUSE Backports SLE-15 (src):    znc-1.7.4-bp150.2.6.1

Comment 6 Swamp Workflow Management 2019-08-14 07:11:54 UTC

openSUSE-SU-2019:1859-1: An update that fixes two vulnerabilities is now available.

Category: security (important)
Bug References: 1130360,1138572
CVE References: CVE-2019-12816,CVE-2019-9917
Sources used:
openSUSE Backports SLE-15-SP1 (src):    znc-1.7.4-bp151.4.3.1