usn-4442-2
Vulnerability from osv_ubuntu
USN-4442-1 fixed vulnerabilities in Sympa. This update provides the corresponding updates for Ubuntu 16.04 ESM, Ubuntu 18.04 ESM and Ubuntu 20.04 ESM. Original advisory details:
Nicolas Chatelain discovered that Sympa incorrectly handled environment variables. An attacker could possibly use this issue with a setuid binary and gain root privileges. (CVE-2020-10936)
Michael Kaczmarczik discovered that Sympa incorrectly handled HTTP GET/POST requests. An attacker could possibly use this issue to insert, edit or obtain sensitive information. This issue only affected Ubuntu 16.04 ESM and Ubuntu 18.04 ESM. (CVE-2018-1000550)
It was discovered that Sympa incorrectly handled URL parameters. An attacker could possibly use this issue to perform XSS attacks. This issue only affected Ubuntu 16.04 ESM and Ubuntu 18.04 ESM. (CVE-2018-1000671)
{
"affected": [
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2018-1000550",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-1000671",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2020-10936",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "high",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:Pro:16.04:LTS"
}
},
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "sympa",
"binary_version": "6.1.24~dfsg-1ubuntu0.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "sympa",
"purl": "pkg:deb/ubuntu/sympa@6.1.24~dfsg-1ubuntu0.1~esm1?arch=source\u0026distro=esm-apps/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.1.24~dfsg-1ubuntu0.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.1.24~dfsg-1"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2018-1000550",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-1000671",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2020-10936",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "high",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:Pro:18.04:LTS"
}
},
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "sympa",
"binary_version": "6.2.24~dfsg-1ubuntu0.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:18.04:LTS",
"name": "sympa",
"purl": "pkg:deb/ubuntu/sympa@6.2.24~dfsg-1ubuntu0.1~esm1?arch=source\u0026distro=esm-apps/bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.2.24~dfsg-1ubuntu0.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.2.18~dfsg-1",
"6.2.22~dfsg-1",
"6.2.24~dfsg-1"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2020-10936",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "high",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:Pro:20.04:LTS"
}
},
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "sympa",
"binary_version": "6.2.40~dfsg-4ubuntu0.20.04.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:20.04:LTS",
"name": "sympa",
"purl": "pkg:deb/ubuntu/sympa@6.2.40~dfsg-4ubuntu0.20.04.1~esm1?arch=source\u0026distro=esm-apps/focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.2.40~dfsg-4ubuntu0.20.04.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.2.40~dfsg-1",
"6.2.40~dfsg-3",
"6.2.40~dfsg-4"
]
}
],
"aliases": [],
"details": "USN-4442-1 fixed vulnerabilities in Sympa. This update provides the\ncorresponding updates for Ubuntu 16.04 ESM, Ubuntu 18.04 ESM and Ubuntu\n20.04 ESM. Original advisory details:\n\nNicolas Chatelain discovered that Sympa incorrectly handled environment\nvariables. An attacker could possibly use this issue with a setuid\nbinary and gain root privileges. (CVE-2020-10936)\n\nMichael Kaczmarczik discovered that Sympa incorrectly handled HTTP\nGET/POST requests. An attacker could possibly use this issue to insert,\nedit or obtain sensitive information. This issue only affected Ubuntu 16.04\nESM and Ubuntu 18.04 ESM. (CVE-2018-1000550)\n\nIt was discovered that Sympa incorrectly handled URL parameters. An\nattacker could possibly use this issue to perform XSS attacks. This issue only\naffected Ubuntu 16.04 ESM and Ubuntu 18.04 ESM. (CVE-2018-1000671)\n",
"id": "USN-4442-2",
"modified": "2026-06-25T10:45:56Z",
"published": "2021-03-15T22:14:00Z",
"references": [
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-4442-2"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2018-1000550"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2018-1000671"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2020-10936"
}
],
"related": [],
"schema_version": "1.7.0",
"summary": "sympa vulnerabilities",
"upstream": [
"UBUNTU-CVE-2018-1000550",
"UBUNTU-CVE-2018-1000671",
"UBUNTU-CVE-2020-10936"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.