Bug 552694

Summary:	<sys-libs/glibc-2.21: ADDW macro vulnerabilities (CVE-2015-{1472,1473})
Product:	Gentoo Security	Reporter:	GLSAMaker/CVETool Bot <glsamaker>
Component:	Vulnerabilities	Assignee:	Gentoo Security <security>
Status:	RESOLVED DUPLICATE
Severity:	major	CC:	toolchain
Priority:	Normal
Version:	unspecified
Hardware:	All
OS:	Linux
See Also:	https://sourceware.org/bugzilla/show_bug.cgi?id=17933
Whiteboard:	A2 [ebuild]
Package list:		Runtime testing required:	---

Description GLSAMaker/CVETool Bot gentoo-dev

2015-06-21 00:25:24 UTC

CVE-2015-1473 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1473):
  The ADDW macro in stdio-common/vfscanf.c in the GNU C Library (aka glibc or
  libc6) before 2.21 does not properly consider data-type size during a
  risk-management decision for use of the alloca function, which might allow
  context-dependent attackers to cause a denial of service (segmentation
  violation) or overwrite memory locations beyond the stack boundary via a
  long line containing wide characters that are improperly handled in a wscanf
  call.

CVE-2015-1472 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1472):
  The ADDW macro in stdio-common/vfscanf.c in the GNU C Library (aka glibc or
  libc6) before 2.21 does not properly consider data-type size during memory
  allocation, which allows context-dependent attackers to cause a denial of
  service (buffer overflow) or possibly have unspecified other impact via a
  long line containing wide characters that are improperly handled in a wscanf
  call.

Comment 1 Agostino Sarubbo gentoo-dev

2015-06-22 07:57:45 UTC

looks like a duplicate of 538814

Comment 2 SpanKY gentoo-dev

2015-07-21 03:15:34 UTC

(In reply to Agostino Sarubbo from comment #1)

upstream treated it that way -- one bug & one fix

*** This bug has been marked as a duplicate of bug 538814 ***