openSUSE Security Update : fossil (openSUSE-2020-1478)

high Nessus Plugin ID 140690

Language:

Synopsis

The remote openSUSE host is missing a security update.

Description

This update for fossil fixes the following issues :

- fossil 2.12.1 :

- CVE-2020-24614: Remote authenticated users with check-in or administrative privileges could have executed arbitrary code [boo#1175760]

- Security fix in the 'fossil git export' command. New 'safety-net' features were added to prevent similar problems in the future.

- Enhancements to the graph display for cases when there are many cherry-pick merges into a single check-in.
Example

- Enhance the fossil open command with the new --workdir option and the ability to accept a URL as the repository name, causing the remote repository to be cloned automatically. Do not allow 'fossil open' to open in a non-empty working directory unless the --keep option or the new --force option is used.

- Enhance the markdown formatter to more closely follow the CommonMark specification with regard to text highlighting. Underscores in the middle of identifiers (ex: fossil_printf()) no longer need to be escaped.

- The markdown-to-html translator can prevent unsafe HTML (for example: <script>) on user-contributed pages like forum and tickets and wiki. The admin can adjust this behavior using the safe-html setting on the Admin/Wiki page. The default is to disallow unsafe HTML everywhere.

- Added the 'collapse' and 'expand' capability for long forum posts.

- The 'fossil remote' command now has options for specifying multiple persistent remotes with symbolic names. Currently only one remote can be used at a time, but that might change in the future.

- Add the 'Remember me?' checkbox on the login page. Use a session cookie for the login if it is not checked.

- Added the experimental 'fossil hook' command for managing 'hook scripts' that run before checkin or after a push.

- Enhance the fossil revert command so that it is able to revert all files beneath a directory.

- Add the fossil bisect skip command.

- Add the fossil backup command.

- Enhance fossil bisect ui so that it shows all unchecked check-ins in between the innermost 'good' and 'bad' check-ins.

- Added the --reset flag to the 'fossil add', 'fossil rm', and 'fossil addremove' commands.

- Added the '--min N' and '--logfile FILENAME' flags to the backoffice command, as well as other enhancements to make the backoffice command a viable replacement for automatic backoffice. Other incremental backoffice improvements.

- Added the /fileedit page, which allows editing of text files online. Requires explicit activation by a setup user.

- Translate built-in help text into HTML for display on web pages.

- On the /timeline webpage, the combination of query parameters 'p=CHECKIN' and 'bt=ANCESTOR' draws all ancestors of CHECKIN going back to ANCESTOR.

- Update the built-in SQLite so that the 'fossil sql' command supports new output modes '.mode box' and '.mode json'.

- Add the 'obscure()' SQL function to the 'fossil sql' command.

- Added virtual tables 'helptext' and 'builtin' to the 'fossil sql' command, providing access to the dispatch table including all help text, and the builtin data files, respectively.

- Delta compression is now applied to forum edits.

- The wiki editor has been modernized and is now Ajax-based.

- Package the fossil.1 manual page.

- fossil 2.11.1 :

- Make the 'fossil git export' command more restrictive about characters that it allows in the tag names

- Add fossil-2.11-reproducible.patch to override build date (boo#1047218)

Solution

Update the affected fossil packages.

See Also

https://bugzilla.opensuse.org/show_bug.cgi?id=1047218

https://bugzilla.opensuse.org/show_bug.cgi?id=1175760

Plugin Details

Severity: High

ID: 140690

File Name: openSUSE-2020-1478.nasl

Version: 1.3

Type: local

Agent: unix

Published: 9/21/2020

Updated: 2/20/2024

Supported Sensors: Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

CVSS Score Source: CVE-2020-24614

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:fossil, cpe:/o:novell:opensuse:15.1, p-cpe:/a:novell:opensuse:fossil-debugsource, cpe:/o:novell:opensuse:15.2, p-cpe:/a:novell:opensuse:fossil-debuginfo

Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu

Exploit Ease: No known exploits are available

Patch Publication Date: 9/19/2020

Vulnerability Publication Date: 8/25/2020

Reference Information

CVE: CVE-2020-24614