Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [Security-news] H5P - Create and Share Rich Content and Applications - Moderately critical - Remote Code Execution - SA-CONTRIB-2022-064

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [Security-news] H5P - Create and Share Rich Content and Applications - Moderately critical - Remote Code Execution - SA-CONTRIB-2022-064


Chronologisch Thread  
    < Chronologisch >       < Thread >
  • From: security-news AT drupal.org
  • To: security-news AT drupal.org
  • Subject: [IT-SecNots] [Security-news] H5P - Create and Share Rich Content and Applications - Moderately critical - Remote Code Execution - SA-CONTRIB-2022-064
  • Date: Wed, 14 Dec 2022 17:54:16 +0000 (UTC)
  • Authentication-results: mail.piratenpartei.de; dkim=none; dmarc=pass (policy=none) header.from=drupal.org; spf=pass (mail.piratenpartei.de: domain of security-news-bounces AT drupal.org designates 140.211.166.136 as permitted sender) smtp.mailfrom=security-news-bounces AT drupal.org
  • Dkim-filter: OpenDKIM Filter v2.11.0 smtp3.osuosl.org 1478E606A0
  • Dkim-filter: OpenDKIM Filter v2.11.0 smtp3.osuosl.org 26ECA61066
  • Dkim-filter: OpenDKIM Filter v2.11.0 smtp1.osuosl.org 22B3E80C7A
  • Dkim-filter: OpenDKIM Filter v2.11.0 smtp1.osuosl.org 6633080C38
  • List-archive: <http://lists.drupal.org/pipermail/security-news/>
  • List-id: <security-news.drupal.org>
View online: https://www.drupal.org/sa-contrib-2022-064

Project: H5P - Create and Share Rich Content and Applications [1]
Date: 2022-December-14
Security risk: *Moderately critical* 12∕25
AC:Complex/A:User/CI:Some/II:Some/E:Theoretical/TD:Default [2]
Vulnerability: Remote Code Execution

Description: 
This module enables you to create interactive content.

The module doesn't sufficiently stop path traversal attacks through zipped
filenames for the uploadable .h5p files.

This vulnerability is mitigated by the fact that an attacker must have a role
with the permission "update h5p libraries". In addition, it is only
exploitable on Windows servers.

Solution: 
Install the latest version:

* If you use the H5P module for Drupal 7.x, upgrade to H5P 7.x-1.51 [3]

Reported By: 
Disclosed publicly.

Fixed By: 
* Frode Petterson [4]
* paalj [5]

Coordinated By: 
* Greg Knaddison [6] of the Drupal Security Team


[1] https://www.drupal.org/project/h5p
[2] https://www.drupal.org/security-team/risk-levels
[3] https://www.drupal.org/project/h5p/releases/7.x-1.51
[4] https://www.drupal.org/user/823190
[5] https://www.drupal.org/user/1091732
[6] https://www.drupal.org/user/36762

_______________________________________________
Security-news mailing list
Security-news AT drupal.org
Unsubscribe at https://lists.drupal.org/mailman/listinfo/security-news

  • [IT-SecNots] [Security-news] H5P - Create and Share Rich Content and Applications - Moderately critical - Remote Code Execution - SA-CONTRIB-2022-064, security-news, 14.12.2022

Archiv bereitgestellt durch MHonArc 2.6.24.

Seitenanfang