UBUNTU-CVE-2020-5225

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2020-5225

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2020/UBUNTU-CVE-2020-5225.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2020-5225

Related

CVE-2020-5225

Published

2020-01-24T21:15:00Z

Modified

2024-10-15T14:07:54Z

Severity

5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

Log injection in SimpleSAMLphp before version 1.18.4. The www/erroreport.php script, which receives error reports and sends them via email to the system administrator, did not properly sanitize the report identifier obtained from the request. This allows an attacker, under specific circumstances, to inject new log lines by manually crafting this report ID. When configured to use the file logging handler, SimpleSAMLphp will output all its logs by appending each log line to a given file. Since the reportID parameter received in a request sent to www/errorreport.php was not properly sanitized, it was possible to inject newline characters into it, effectively allowing a malicious user to inject new log lines with arbitrary content.

References

Affected packages

Ubuntu:Pro:16.04:LTS / simplesamlphp

Package

Name: simplesamlphp
Purl: pkg:deb/ubuntu/simplesamlphp?arch=src?distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.13.2-1

1.14.0-1

1.14.0-1ubuntu2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / simplesamlphp

Package

Name: simplesamlphp
Purl: pkg:deb/ubuntu/simplesamlphp?arch=src?distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.14.15-1

1.15.0-1

1.15.1-1

1.15.2-1

1.15.3-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / simplesamlphp

Package

Name: simplesamlphp
Purl: pkg:deb/ubuntu/simplesamlphp?arch=src?distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.18.4-1

Affected versions

1.*

1.17.5-1

1.17.6-1

1.17.6-2

1.18.1-1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "1.18.4-1",
            "binary_name": "simplesamlphp"
        }
    ]
}