製品・ソフトウェアに関する情報

JVN脆弱性詳細

CVS におけるコマンドインジェクションの脆弱性

Title	CVS におけるコマンドインジェクションの脆弱性
Summary	CVS (Concurrent Versioning System) には、コマンドインジェクションの脆弱性が存在します。
Possible impacts	情報を取得される、情報を改ざんされる、およびサービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Aug. 13, 2017, midnight
Registration Date	Sept. 28, 2017, 3:07 p.m.
Last Update	Sept. 28, 2017, 3:07 p.m.

Affected System

Debian

Debian GNU/Linux 8.0

Debian GNU/Linux 9.0

Canonical

Ubuntu 14.04 LTS

Ubuntu 16.04 LTS

Ubuntu 17.04

CVS

CVS (Concurrent Versioning System) 1.12.x

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2017-12836	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12836
National Vulnerability Database (NVD)
2	CVE-2017-12836	https://nvd.nist.gov/vuln/detail/CVE-2017-12836

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-77	https://cwe.mitre.org/data/definitions/77.html

ベンダー情報

No	Name	URL
Concurrent Versions System
1	CVS and ssh command injection (see CVE-2017-1000117, etc.)	http://lists.nongnu.org/archive/html/bug-cvs/2017-08/msg00000.html
2	Top Page	http://www.nongnu.org/cvs/
Debian Security Advisory
3	DSA-3940	https://www.debian.org/security/2017/dsa-3940
Ubuntu Security Notice
4	USN-3399-1	https://usn.ubuntu.com/usn/USN-3399-1/

Change Log

No	Changed Details	Date of change
0	[2017年09月28日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2017-12836

Summary	CVS 1.12.x, when configured to use SSH for remote repositories, might allow remote attackers to execute arbitrary code via a repository URL with a crafted hostname, as demonstrated by "-oProxyCommand=id;localhost:/bar."
Publication Date	Aug. 24, 2017, 11:29 p.m.
Registration Date	Jan. 26, 2021, 1:14 p.m.
Last Update	Nov. 21, 2024, 12:10 p.m.

Affected software configurations

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:17.04:::::::*

Related information, measures and tools

No	URL	タグ
1	http://lists.nongnu.org/archive/html/bug-cvs/2017-08/msg00000.html	Exploit Mailing List Vendor Advisory
2	http://lists.nongnu.org/archive/html/bug-cvs/2017-08/msg00000.html	Exploit Mailing List Vendor Advisory
3	http://www.debian.org/security/2017/dsa-3940	Third Party Advisory
4	http://www.debian.org/security/2017/dsa-3940	Third Party Advisory
5	http://www.openwall.com/lists/oss-security/2017/08/11/1	Exploit Mailing List Third Party Advisory
6	http://www.openwall.com/lists/oss-security/2017/08/11/1	Exploit Mailing List Third Party Advisory
7	http://www.openwall.com/lists/oss-security/2017/08/11/4	Mailing List Third Party Advisory
8	http://www.openwall.com/lists/oss-security/2017/08/11/4	Mailing List Third Party Advisory
9	http://www.securityfocus.com/bid/100279	Third Party Advisory VDB Entry
10	http://www.securityfocus.com/bid/100279	Third Party Advisory VDB Entry
11	http://www.ubuntu.com/usn/USN-3399-1	Third Party Advisory
12	http://www.ubuntu.com/usn/USN-3399-1	Third Party Advisory
13	https://bugzilla.redhat.com/show_bug.cgi?id=1480800	Issue Tracking Patch Third Party Advisory VDB Entry
14	https://bugzilla.redhat.com/show_bug.cgi?id=1480800	Issue Tracking Patch Third Party Advisory VDB Entry
15	https://security.gentoo.org/glsa/201709-17	Third Party Advisory
16	https://security.gentoo.org/glsa/201709-17	Third Party Advisory

Common Vulnerabilities List