First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 137344
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Raphael Marichez <falco@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 137344 depends on: Show dependency tree
Show dependency graph
Bug 137344 blocks:

Additional Comments: (this is where you put emerge --info)







View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2006-06-20 01:56 0000 
Very very minor IMHO, because it only crashes the application, which is not a
server... so the impact is... ~ null

Nonetheless, graphics team, can you bump out the 10.34 version ?



Software:       NetPBM 10.x

Description:
A vulnerability has been reported in NetPBM, which can be exploited by
malicious people to cause a DoS (Denial of Service) .

The vulnerability is caused due to an off-by-one boundary error within
"pamtofits". This can be exploited to cause a single byte buffer overflow when
processing a specially crafted input file.

Successful exploitation crashes the application. Code execution has not been
confirmed. However, this can't be ruled out completely.

The vulnerability has been reported in versions 10.30 through 10.33.

Solution:
Update to version 10.34.
http://sourceforge.net/project/showfiles.php?group_id=5128

Provided and/or discovered by:
Reported by vendor.

Original Advisory:
http://sourceforge.net/project/shownotes.php?release_id=425770

------- Comment #1 From Wolf Giesen (RETIRED) 2006-06-20 02:01:40 0000 ------- 
tinderbox says it's used by mail-mta/courier and hylafax, for example, which
are server apps.

------- Comment #2 From SpanKY 2006-06-20 12:23:58 0000 ------- 
10.34 in portage

------- Comment #3 From Raphael Marichez 2006-06-21 05:06:12 0000 ------- 
Thanks Vapier;

Hello arches, please mark stable -10.34

------- Comment #4 From Gustavo Zacarias (RETIRED) 2006-06-21 06:22:20 0000 ------- 
sparc stable.

------- Comment #5 From Markus Rothe 2006-06-21 13:49:45 0000 ------- 
ppc64 stable

------- Comment #6 From Joshua Jackson 2006-06-21 22:59:16 0000 ------- 
x86 done

------- Comment #7 From Thomas Cort (RETIRED) 2006-06-22 21:01:55 0000 ------- 
stable on alpha and amd64.

------- Comment #8 From René Nussbaumer 2006-06-24 11:09:47 0000 ------- 
stable on hppa

------- Comment #9 From Tobias Scherbaum 2006-06-25 00:28:40 0000 ------- 
ppc stable

------- Comment #10 From Raphael Marichez 2006-06-25 11:42:16 0000 ------- 
time to vote.

i would vote a half-no (half, because netpbm is used in other softwares)

------- Comment #11 From Wolf Giesen (RETIRED) 2006-06-25 11:56:39 0000 ------- 
Definite yes.

------- Comment #12 From Thierry Carrez (RETIRED) 2006-06-26 13:24:31 0000 ------- 
I vote no. Who/what server app would use *pamtofits* on untrusted input ?? It's
not like if all NetPBM utilities were affected.

------- Comment #13 From Sune Kloppenborg Jeppesen 2006-06-28 02:33:18 0000 ------- 
Voting NO and closing. Feel free to reopen if you disagree.

------- Comment #14 From Ryan Grange 2006-07-01 10:38:50 0000 ------- 
Attempting to update to netpbm-10.34 fails because it is dependant on features
not available until GCC-4 which has at this time only been marked stable for
HPPA and PPC.
First Last Prev Next    No search results available      Search page      Enter new bug