497094 – <net-misc/freerdp-1.0.2: Integer overflow in license_read_scope_list function (CVE-2014-0791)

Bug 497094 - <net-misc/freerdp-1.0.2: Integer overflow in license_read_scope_list function (CVE-2014-0791)

Summary: <net-misc/freerdp-1.0.2: Integer overflow in license_read_scope_list function...

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal minor (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:	B3 [noglsa]
Keywords:

Depends on:
Blocks:

Reported:	2014-01-05 03:03 UTC by GLSAMaker/CVETool Bot
Modified:	2014-01-06 22:46 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description GLSAMaker/CVETool Bot gentoo-dev

2014-01-05 03:03:12 UTC

CVE-2014-0791 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0791):
  Integer overflow in the license_read_scope_list function in
  libfreerdp/core/license.c in FreeRDP through 1.0.2 allows remote RDP servers
  to cause a denial of service (application crash) or possibly have
  unspecified other impact via a large ScopeCount value in a Scope List in a
  Server License Request packet.


Looks like it needs cleanup.

Comment 1 Mike Gilbert gentoo-dev

2014-01-05 03:33:04 UTC

+  05 Jan 2014; Mike Gilbert <floppym@gentoo.org>
+  -freerdp-1.0.1_p20120318.ebuild:
+  Remove vulnerable version, bug 497094.

Comment 2 Chris Reffett (RETIRED) gentoo-dev

2014-01-05 03:46:04 UTC

Much appreciated. GLSA vote: no.

Comment 3 Sergey Popov gentoo-dev

2014-01-06 22:46:50 UTC

GLSA vote: no

Closing as noglsa