oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE Request -- Mumble server (Murmur) / Qt SQLite -- Remotely exploitable DoS (murmur termination) due QueryUsers Qt SQLite database bug

From: Josh Bressers <bressers () redhat com>
Date: Fri, 2 Jul 2010 15:02:56 -0400 (EDT)
Please use CVE-2010-2490

Thanks.

-- 
    JB


----- "Jan Lieskovsky" <jlieskov () redhat com> wrote:


Hi Steve, vendors,

   Luigi Auriemma reported:
   [1] http://aluigi.altervista.org/adv/mumbleed-adv.txt

a deficiency in the way Mumble server processed malformed SQL query
data.
A remote, authenticated user could use this flaw to cause denial of
service
(mumble server termination) via specially-crafted QueryUsers Qt SQLite
SQL
query.

References:
   [2] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=587713

Public PoC:
   [3] http://aluigi.org/poc/mumbleed.zip

Though not sure, if the true reason for this is:
1, either Mumble server calling relevant Qt SQLite function in
improper way or
2, deficiency in that particular Qt function itself

Luigi, could you please clarify on the above?

Steve, could you allocate a CVE id for this?

Thanks && Regards, Jan.
--
Jan iankko Lieskovsky / Red Hat Security Response Team
Previous By Date Next
Previous By Thread Next

Current thread: