658482 – (CVE-2018-11468, CVE-2018-11503, CVE-2018-11504, CVE-2018-12495) <app-text/discount-2.2.4: multiple vulnerabilities (CVE-2018-{11468,11503,11504,12495})

Bug 658482 (CVE-2018-11468, CVE-2018-11503, CVE-2018-11504, CVE-2018-12495) - <app-text/discount-2.2.4: multiple vulnerabilities (CVE-2018-{11468,11503,11504,12495})

Summary: <app-text/discount-2.2.4: multiple vulnerabilities (CVE-2018-{11468,11503,115...

Status:	RESOLVED FIXED

Alias:	CVE-2018-11468, CVE-2018-11503, CVE-2018-11504, CVE-2018-12495

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal minor
Assignee:	Gentoo Security

URL:	https://github.com/Orc/discount/issue...
Whiteboard:	B3 [noglsa cve]
Keywords:

Depends on:
Blocks:

Reported:	2018-06-19 13:44 UTC by Florian Schuhmacher
Modified:	2018-11-24 22:53 UTC (History)
CC List:	3 users (show)

See Also:
Package list:	app-text/discount-2.2.4
Runtime testing required:	---

Flags:	stable-bot: sanity-check+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Florian Schuhmacher 2018-06-19 13:44:32 UTC

The quoteblock function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.


Gentoo Security Scout
Florian Schuhmacher

Comment 1 Thomas Deutschmann (RETIRED) gentoo-dev

2018-09-11 12:22:51 UTC

@ maintainer(s): Please bump to >=2.2.4!

Comment 2 Virgil Dupras (RETIRED) gentoo-dev

2018-10-01 19:59:45 UTC

Dmitry: are you still maintaining this? We expect a much faster response to security bugs.

Comment 3 Larry the Git Cow gentoo-dev

2018-10-01 20:00:55 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=ed43d9829d0045f50f8eb6c5ca743ec179b56791

commit ed43d9829d0045f50f8eb6c5ca743ec179b56791
Author:     Sergey Alirzaev <zl29ah@gmail.com>
AuthorDate: 2018-10-01 19:33:31 +0000
Commit:     Virgil Dupras <vdupras@gentoo.org>
CommitDate: 2018-10-01 19:58:11 +0000

    app-text/discount: version bump to 2.2.4
    
    Bug: https://bugs.gentoo.org/658482
    Signed-off-by: Sergey Alirzaev <zl29ah@gmail.com>
    Closes: https://github.com/gentoo/gentoo/pull/10038
    Signed-off-by: Virgil Dupras <vdupras@gentoo.org>

 app-text/discount/Manifest              |  1 +
 app-text/discount/discount-2.2.4.ebuild | 70 +++++++++++++++++++++++++++++++++
 2 files changed, 71 insertions(+)

Comment 4 Virgil Dupras (RETIRED) gentoo-dev

2018-10-01 20:06:17 UTC

Bumped through https://github.com/gentoo/gentoo/pull/10038

Arches, please stabilize app-text/discount-2.2.4. Thanks!

Comment 5 Thomas Deutschmann (RETIRED) gentoo-dev

2018-10-01 22:43:36 UTC

x86 stable

Comment 6 Tobias Klausmann (RETIRED) gentoo-dev

2018-10-02 14:03:56 UTC

Stable on alpha.

Comment 7 Rolf Eike Beer archtester

2018-10-02 18:50:05 UTC

sparc done.

Comment 8 Mikle Kolyada (RETIRED) archtester

2018-10-02 20:39:40 UTC

amd64 stable

Comment 9 Matt Turner gentoo-dev

2018-10-06 16:17:02 UTC

ppc/ppc64 stable

Comment 10 Larry the Git Cow gentoo-dev

2018-10-06 19:18:11 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5b12e15be60744fc77b2911c806f3cc46b866309

commit 5b12e15be60744fc77b2911c806f3cc46b866309
Author:     Virgil Dupras <vdupras@gentoo.org>
AuthorDate: 2018-10-06 19:16:17 +0000
Commit:     Virgil Dupras <vdupras@gentoo.org>
CommitDate: 2018-10-06 19:17:20 +0000

    app-text/discount: orphan package
    
    Current maintainer is unresponsive
    
    Bug: https://bugs.gentoo.org/658482
    Signed-off-by: Virgil Dupras <vdupras@gentoo.org>
    Package-Manager: Portage-2.3.50, Repoman-2.3.11

 app-text/discount/metadata.xml | 9 +--------
 1 file changed, 1 insertion(+), 8 deletions(-)

Comment 11 Sergei Trofimovich (RETIRED) gentoo-dev

2018-10-12 19:19:29 UTC

ia64 stable

Comment 12 Larry the Git Cow gentoo-dev

2018-10-17 17:20:39 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1e8e7ede8accdfc1b0faf0630afab11c9dea201f

commit 1e8e7ede8accdfc1b0faf0630afab11c9dea201f
Author:     Virgil Dupras <vdupras@gentoo.org>
AuthorDate: 2018-10-17 17:20:22 +0000
Commit:     Virgil Dupras <vdupras@gentoo.org>
CommitDate: 2018-10-17 17:20:22 +0000

    app-text/discount: remove old and vulnerable
    
    We're having to drop arm stable keyword because its stablereq is taking
    too long.
    
    Bug: https://bugs.gentoo.org/658482
    Signed-off-by: Virgil Dupras <vdupras@gentoo.org>
    Package-Manager: Portage-2.3.51, Repoman-2.3.11

 app-text/discount/Manifest                  |  3 --
 app-text/discount/discount-2.1.8a-r1.ebuild | 77 -----------------------------
 app-text/discount/discount-2.2.2.ebuild     | 70 --------------------------
 app-text/discount/discount-2.2.3a.ebuild    | 70 --------------------------
 4 files changed, 220 deletions(-)