Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 678816 - sci-libs/matio: multiple vulnerabilities
Summary: sci-libs/matio: multiple vulnerabilities
Status: RESOLVED DUPLICATE of bug 679476
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: https://github.com/TeamSeri0us/pocs/t...
Whiteboard: ~2 [upstream]
Keywords:
Depends on:
Blocks:
 
Reported: 2019-02-26 09:50 UTC by Fadi Abu Sneineh
Modified: 2020-04-26 04:00 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Fadi Abu Sneineh 2019-02-26 09:50:46 UTC
* CVE-2019-9026: An issue was discovered in libmatio.a in matio (aka MAT File I/O Library) 1.5.13. There is a heap-based buffer overflow in the function InflateVarName() in inflate.c when called from ReadNextCell in mat5.c.

* CVE-2019-9027: An issue was discovered in libmatio.a in matio (aka MAT File I/O Library) 1.5.13. There is a heap-based buffer overflow problem in the function ReadNextCell() in mat5.c.

* CVE-2019-9028: An issue was discovered in libmatio.a in matio (aka MAT File I/O Library) 1.5.13. There is a stack-based buffer over-read in the function InflateDimensions() in inflate.c when called from ReadNextCell in mat5.c.

References:
* https://github.com/tbeu/matio/issues/103
* https://github.com/TeamSeri0us/pocs/tree/master/matio

----
Fadi
Comment 1 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2020-03-07 20:45:41 UTC
FYI: This now has fixes, as per the issue (https://github.com/tbeu/matio/issues/103).
Comment 2 Larry the Git Cow gentoo-dev 2020-03-15 23:55:37 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=568a3b2d4c68eb44798da9d63fa15d82bee8b887

commit 568a3b2d4c68eb44798da9d63fa15d82bee8b887
Author:     David Seifert <soap@gentoo.org>
AuthorDate: 2020-03-15 23:55:21 +0000
Commit:     David Seifert <soap@gentoo.org>
CommitDate: 2020-03-15 23:55:21 +0000

    sci-libs/matio: Version bump to 1.5.17
    
    Bug: https://bugs.gentoo.org/603218
    Bug: https://bugs.gentoo.org/678816
    Bug: https://bugs.gentoo.org/679476
    Bug: https://bugs.gentoo.org/695314
    Bug: https://bugs.gentoo.org/711822
    Package-Manager: Portage-2.3.94, Repoman-2.3.21
    Signed-off-by: David Seifert <soap@gentoo.org>

 sci-libs/matio/Manifest            |  1 +
 sci-libs/matio/matio-1.5.17.ebuild | 46 ++++++++++++++++++++++++++++++++++++++
 2 files changed, 47 insertions(+)
Comment 3 Yury German Gentoo Infrastructure gentoo-dev 2020-04-26 04:00:26 UTC

*** This bug has been marked as a duplicate of bug 679476 ***