[SECURITY] [DLA 297-1] wesnoth-1.8 security update

2015-08-2209:19:10

lists.debian.org

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

4.2 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.4%

JSON

Package : wesnoth-1.8
Version : 1:1.8.5-1+deb6u2
CVE ID : CVE-2015-5069 CVE-2015-5070

Wesnoth implements a text preprocessing language that is used in
conjunction with its own game scripting language. It also has a
built-in Lua interpreter and API.
Both the Lua API and the preprocessor make use of the same function
(filesystem::get_wml_location()) to resolve file paths so that only
content from the user's data directory can be read.

However, the function did not explicitly disallow files with the .pbl
extension. The contents of these files could thus be stored in saved
game files or even transmitted directly to other users in a networked
game. Among the information that's compromised is a user-defined
passphrase used to authenticate uploads to the game's content server.

OSVersionArchitecturePackageVersionFilename
Debian8allwesnoth< 1:1.10.7-2+deb8u1wesnoth_1:1.10.7-2+deb8u1_all.deb
Debian8armhfwesnoth-1.10-server< 1:1.10.7-2+deb8u1wesnoth-1.10-server_1:1.10.7-2+deb8u1_armhf.deb
Debian7allwesnoth-1.10-data< 1:1.10.3-3+deb7u2wesnoth-1.10-data_1:1.10.3-3+deb7u2_all.deb
Debian7i386wesnoth-1.10-server< 1:1.10.3-3+deb7u2wesnoth-1.10-server_1:1.10.3-3+deb7u2_i386.deb
Debian7allwesnoth-1.10-dm< 1:1.10.3-3+deb7u2wesnoth-1.10-dm_1:1.10.3-3+deb7u2_all.deb
Debian6amd64wesnoth-1.8-core< 1:1.8.5-1+deb6u2wesnoth-1.8-core_1:1.8.5-1+deb6u2_amd64.deb
Debian7armhfwesnoth-1.10-dbg< 1:1.10.3-3+deb7u2wesnoth-1.10-dbg_1:1.10.3-3+deb7u2_armhf.deb
Debian6allwesnoth-1.8-dm< 1:1.8.5-1+deb6u2wesnoth-1.8-dm_1:1.8.5-1+deb6u2_all.deb
Debian7kfreebsd-i386wesnoth-1.10-server< 1:1.10.3-3+deb7u2wesnoth-1.10-server_1:1.10.3-3+deb7u2_kfreebsd-i386.deb
Debian7mipselwesnoth-1.10-server< 1:1.10.3-3+deb7u2wesnoth-1.10-server_1:1.10.3-3+deb7u2_mipsel.deb

OS	Version	Architecture	Package	Version	Filename
Debian	8	all	wesnoth	< 1:1.10.7-2+deb8u1	wesnoth_1:1.10.7-2+deb8u1_all.deb
Debian	8	armhf	wesnoth-1.10-server	< 1:1.10.7-2+deb8u1	wesnoth-1.10-server_1:1.10.7-2+deb8u1_armhf.deb
Debian	7	all	wesnoth-1.10-data	< 1:1.10.3-3+deb7u2	wesnoth-1.10-data_1:1.10.3-3+deb7u2_all.deb
Debian	7	i386	wesnoth-1.10-server	< 1:1.10.3-3+deb7u2	wesnoth-1.10-server_1:1.10.3-3+deb7u2_i386.deb
Debian	7	all	wesnoth-1.10-dm	< 1:1.10.3-3+deb7u2	wesnoth-1.10-dm_1:1.10.3-3+deb7u2_all.deb
Debian	6	amd64	wesnoth-1.8-core	< 1:1.8.5-1+deb6u2	wesnoth-1.8-core_1:1.8.5-1+deb6u2_amd64.deb
Debian	7	armhf	wesnoth-1.10-dbg	< 1:1.10.3-3+deb7u2	wesnoth-1.10-dbg_1:1.10.3-3+deb7u2_armhf.deb
Debian	6	all	wesnoth-1.8-dm	< 1:1.8.5-1+deb6u2	wesnoth-1.8-dm_1:1.8.5-1+deb6u2_all.deb
Debian	7	kfreebsd-i386	wesnoth-1.10-server	< 1:1.10.3-3+deb7u2	wesnoth-1.10-server_1:1.10.3-3+deb7u2_kfreebsd-i386.deb
Debian	7	mipsel	wesnoth-1.10-server	< 1:1.10.3-3+deb7u2	wesnoth-1.10-server_1:1.10.3-3+deb7u2_mipsel.deb