Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 618016 (CVE-2017-8361, CVE-2017-8362, CVE-2017-8363, CVE-2017-8365) - <media-libs/libsndfile-1.0.28-r4: multiple vulnerabilities (CVE-2017-{8361,8362,8363,8365})
Summary: <media-libs/libsndfile-1.0.28-r4: multiple vulnerabilities (CVE-2017-{8361,83...
Status: RESOLVED FIXED
Alias: CVE-2017-8361, CVE-2017-8362, CVE-2017-8363, CVE-2017-8365
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal major (vote)
Assignee: Gentoo Security
URL:
Whiteboard: A2 [glsa+ cve]
Keywords:
Depends on: CVE-2018-13139
Blocks:
  Show dependency tree
 
Reported: 2017-05-09 18:25 UTC by Agostino Sarubbo
Modified: 2018-11-30 08:53 UTC (History)
1 user (show)

See Also:
Package list:
media-libs/libsndfile-1.0.28-r4
Runtime testing required: ---
stable-bot: sanity-check+


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 GLSAMaker/CVETool Bot gentoo-dev 2017-06-03 10:40:52 UTC
CVE-2017-8365 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-8365):
  The i2les_array function in pcm.c in libsndfile 1.0.28 allows remote
  attackers to cause a denial of service (buffer over-read and application
  crash) via a crafted audio file.

CVE-2017-8363 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-8363):
  The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote
  attackers to cause a denial of service (heap-based buffer over-read and
  application crash) via a crafted audio file.

CVE-2017-8362 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-8362):
  The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote
  attackers to cause a denial of service (invalid read and application crash)
  via a crafted audio file.

CVE-2017-8361 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-8361):
  The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote
  attackers to cause a denial of service (buffer overflow and application
  crash) or possibly have unspecified other impact via a crafted audio file.
Comment 2 Larry the Git Cow gentoo-dev 2018-10-03 19:22:27 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b8fc21b710b18e21dfba9506f666ec18744a3e64

commit b8fc21b710b18e21dfba9506f666ec18744a3e64
Author:     Andreas Sturmlechner <asturm@gentoo.org>
AuthorDate: 2018-10-03 19:16:17 +0000
Commit:     Andreas Sturmlechner <asturm@gentoo.org>
CommitDate: 2018-10-03 19:22:05 +0000

    media-libs/libsndfile: Fix multiple vulnerabilities
    
    Bug: https://bugs.gentoo.org/618016
    Bug: https://bugs.gentoo.org/631634
    Bug: https://bugs.gentoo.org/624814
    Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>
    Package-Manager: Portage-2.3.50, Repoman-2.3.11

 .../files/libsndfile-1.0.28-CVE-2017-14634.patch   | 35 +++++++++++
 .../files/libsndfile-1.0.28-CVE-2017-6892.patch    | 25 ++++++++
 .../files/libsndfile-1.0.28-CVE-2017-8362.patch    | 50 ++++++++++++++++
 .../files/libsndfile-1.0.28-CVE-2017-8363.patch    | 28 +++++++++
 .../files/libsndfile-1.0.28-CVE-2017-8365.patch    | 64 ++++++++++++++++++++
 .../files/libsndfile-1.0.28-CVE-2018-13139.patch   |  2 +-
 media-libs/libsndfile/libsndfile-1.0.28-r4.ebuild  | 70 ++++++++++++++++++++++
 7 files changed, 273 insertions(+), 1 deletion(-)
Comment 3 Stabilization helper bot gentoo-dev 2018-10-03 20:00:23 UTC
An automated check of this bug failed - the following atom is unknown:

<media-libs/libsndfile-1.0.28-r4

Please verify the atom list.
Comment 4 Mikle Kolyada (RETIRED) archtester Gentoo Infrastructure gentoo-dev Security 2018-10-04 08:32:54 UTC
amd64 stable
Comment 5 Sergei Trofimovich (RETIRED) gentoo-dev 2018-10-04 23:12:35 UTC
ia64 stable
Comment 6 Thomas Deutschmann (RETIRED) gentoo-dev 2018-10-05 04:52:26 UTC
x86 stable
Comment 7 Matt Turner gentoo-dev 2018-10-06 16:15:02 UTC
ppc/ppc64 stable
Comment 8 Sergei Trofimovich (RETIRED) gentoo-dev 2018-10-06 22:32:01 UTC
hppa stable
Comment 9 Tobias Klausmann (RETIRED) gentoo-dev 2018-10-13 06:56:44 UTC
Stable on alpha.
Comment 10 Markus Meier gentoo-dev 2018-10-29 05:36:51 UTC
arm stable
Comment 11 Larry the Git Cow gentoo-dev 2018-11-04 22:51:05 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=3fa1d3aa440927c9b17c5ff3fc5bc1a5909880bf

commit 3fa1d3aa440927c9b17c5ff3fc5bc1a5909880bf
Author:     Andreas Sturmlechner <asturm@gentoo.org>
AuthorDate: 2018-11-04 22:49:02 +0000
Commit:     Andreas Sturmlechner <asturm@gentoo.org>
CommitDate: 2018-11-04 22:50:43 +0000

    media-libs/libsndfile: Security cleanup
    
    Bug: https://bugs.gentoo.org/618016
    Package-Manager: Portage-2.3.51, Repoman-2.3.12
    Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>

 media-libs/libsndfile/libsndfile-1.0.28-r3.ebuild | 67 -----------------------
 1 file changed, 67 deletions(-)
Comment 12 Rolf Eike Beer archtester 2018-11-08 23:03:31 UTC
sparc stable
Comment 13 GLSAMaker/CVETool Bot gentoo-dev 2018-11-30 08:53:50 UTC
This issue was resolved and addressed in
 GLSA 201811-23 at https://security.gentoo.org/glsa/201811-23
by GLSA coordinator Aaron Bauman (b-man).