650656 – (CVE-2018-5147) <media-libs/tremor-0_pre20130223-r2: out of bounds write in codebook decoding

Bug 650656 (CVE-2018-5147) - <media-libs/tremor-0_pre20130223-r2: out of bounds write in codebook decoding

Summary: <media-libs/tremor-0_pre20130223-r2: out of bounds write in codebook decoding

Status:	RESOLVED FIXED

Alias:	CVE-2018-5147

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal minor
Assignee:	Gentoo Security

URL:	https://git.xiph.org/?p=tremor.git;a=...
Whiteboard:	B3 [noglsa cve]
Keywords:	CC-ARCHES

Depends on:
Blocks:

Reported:	2018-03-16 18:11 UTC by Hanno Böck
Modified:	2020-07-27 20:12 UTC (History)
CC List:	2 users (show)

See Also:
Package list:	=media-libs/tremor-0_pre20130223-r2
Runtime testing required:	---

Flags:	nattka: sanity-check+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Hanno Böck gentoo-dev

2018-03-16 18:11:51 UTC

See
https://git.xiph.org/?p=tremor.git;a=commit;h=562307a4a7082e24553f3d2c55dab397a17c4b4f

Tremor doesn't have official releases, we should bump to a new snapshot.

Comment 1 Sam James archtester

2020-03-16 02:10:09 UTC

@Maintainer(s), can we apply the patch in URL or ideally just bump it to a newer version given what Hanno said about snapshots?

Comment 2 Larry the Git Cow gentoo-dev

2020-03-16 21:05:37 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=9dc346fb2bd5debe6bedfc047255438242505d66

commit 9dc346fb2bd5debe6bedfc047255438242505d66
Author:     Sebastian Pipping <sping@gentoo.org>
AuthorDate: 2020-03-16 21:04:33 +0000
Commit:     Sebastian Pipping <sping@gentoo.org>
CommitDate: 2020-03-16 21:04:52 +0000

    media-libs/tremor: Fix out-of-bounds write
    
    Bug: https://bugs.gentoo.org/650656
    Signed-off-by: Sebastian Pipping <sping@gentoo.org>
    Package-Manager: Portage-2.3.92, Repoman-2.3.20

 .../tremor-0_pre20130223-out-of-bounds-write.patch | 88 ++++++++++++++++++++++
 media-libs/tremor/tremor-0_pre20130223-r2.ebuild   | 50 ++++++++++++
 2 files changed, 138 insertions(+)

Comment 3 Sam James archtester

2020-03-25 01:54:31 UTC

@maintainer(s), please advise if ready for stabilisation, or call yourself.

Comment 4 Sam James archtester

2020-05-05 22:47:27 UTC

Please advise if there is any issue preventing stabilisation or we'll stabilise in a few days.

Comment 5 Sam James archtester

2020-05-15 14:37:50 UTC

No new bugs, stabling...

Comment 6 Sergei Trofimovich (RETIRED) gentoo-dev

2020-05-17 10:19:24 UTC

ppc/ppc64 stable

Comment 7 Agostino Sarubbo gentoo-dev

2020-05-18 12:38:57 UTC

sparc stable

Comment 8 Rolf Eike Beer archtester

2020-05-18 18:06:48 UTC

~hppa is fine

Comment 9 Agostino Sarubbo gentoo-dev

2020-05-18 21:10:19 UTC

amd64 stable

Comment 10 Agostino Sarubbo gentoo-dev

2020-05-18 21:11:34 UTC

arm stable

Comment 11 Agostino Sarubbo gentoo-dev

2020-05-18 21:13:17 UTC

x86 stable

Comment 12 Sam James archtester

2020-06-06 19:49:11 UTC

arm64 stable

----
@maintainer(s), please cleanup

Comment 13 Larry the Git Cow gentoo-dev

2020-06-07 15:34:12 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=163e264dd0647897c9f69ddfa3ae3d3cb52e2139

commit 163e264dd0647897c9f69ddfa3ae3d3cb52e2139
Author:     Sebastian Pipping <sping@gentoo.org>
AuthorDate: 2020-06-07 15:32:30 +0000
Commit:     Sebastian Pipping <sping@gentoo.org>
CommitDate: 2020-06-07 15:33:53 +0000

    media-libs/tremor: Drop vulnerable
    
    Bug: https://bugs.gentoo.org/650656
    Signed-off-by: Sebastian Pipping <sping@gentoo.org>
    Package-Manager: Portage-2.3.99, Repoman-2.3.22

 media-libs/tremor/tremor-0_pre20130223-r1.ebuild | 44 ------------------------
 1 file changed, 44 deletions(-)