Main Vulnerability Database SB2017010303

SB2017010303 - Two vulnerabilities in Borg

Published: January 3, 2017

Security Bulletin ID SB2017010303

Severity

Low

Patch available

YES

Number of vulnerabilities 2

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Improper input validation (CVE-ID: CVE-2016-10100)

The vulnerability allows a remote attacker to overwrite arbitrary archives.

The vulnerability exists due to an error when processing duplicate archive names during manifest recovery. A remote attacker can spoof the names of archives and trick the victim into using malicious file.

2) Manifest spoofing (CVE-ID: CVE-2016-10099)

The vulnerability allows a remote attacker to perform a spoofing attack.

The vulnerability exists due to error within cryptographic protocol used to authenticate the manifest (list of archives). A remote attacker can spoof the list of archives.

Remediation

Install update from vendor's website.

References

http://borgbackup.readthedocs.io/en/stable/changes.html