717942 – (CVE-2019-17533) <sci-libs/matio-1.5.19: Buffer overflow in Mat_VarReadNextInfo4 (CVE-2019-17533)

Bug 717942 (CVE-2019-17533) - <sci-libs/matio-1.5.19: Buffer overflow in Mat_VarReadNextInfo4 (CVE-2019-17533)

Summary: <sci-libs/matio-1.5.19: Buffer overflow in Mat_VarReadNextInfo4 (CVE-2019-17533)

Status:	RESOLVED FIXED

Alias:	CVE-2019-17533

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal trivial
Assignee:	Gentoo Security

URL:	https://github.com/tbeu/matio/commit/...
Whiteboard:	~3 [noglsa cve]
Keywords:	PullRequest

Depends on:
Blocks:

Reported:	2020-04-17 20:53 UTC by GLSAMaker/CVETool Bot
Modified:	2021-01-24 19:53 UTC (History)
CC List:	1 user (show)

See Also:	https://github.com/gentoo/gentoo/pull/19178
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description GLSAMaker/CVETool Bot gentoo-dev

2020-04-17 20:53:46 UTC

CVE-2019-17533 (https://nvd.nist.gov/vuln/detail/CVE-2019-17533):
  Mat_VarReadNextInfo4 in mat4.c in MATIO 1.5.17 omits a certain '\0'
  character, leading to a heap-based buffer over-read in strdup_vprintf when
  uninitialized memory is accessed.

Comment 1 Sam James archtester

2020-06-20 01:52:53 UTC

Please apply the provided patch.

Comment 2 Larry the Git Cow gentoo-dev

2021-01-24 13:49:39 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=fc63d3c00b05401d7dadc593066b37f50ea2966d

commit fc63d3c00b05401d7dadc593066b37f50ea2966d
Author:     Jakov Smolic <jakov.smolic@sartura.hr>
AuthorDate: 2021-01-24 13:48:19 +0000
Commit:     David Seifert <soap@gentoo.org>
CommitDate: 2021-01-24 13:48:19 +0000

    sci-libs/matio: Remove old
    
    Closes: https://github.com/gentoo/gentoo/pull/19178
    Bug: https://bugs.gentoo.org/717942
    Signed-off-by: Jakov Smolic <jakov.smolic@sartura.hr>
    Signed-off-by: David Seifert <soap@gentoo.org>

 sci-libs/matio/Manifest            |  1 -
 sci-libs/matio/matio-1.5.17.ebuild | 46 --------------------------------------
 2 files changed, 47 deletions(-)

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=3250ba85965856cec855ec2ed01e02aaa16d17a2

commit 3250ba85965856cec855ec2ed01e02aaa16d17a2
Author:     Jakov Smolic <jakov.smolic@sartura.hr>
AuthorDate: 2021-01-24 13:48:18 +0000
Commit:     David Seifert <soap@gentoo.org>
CommitDate: 2021-01-24 13:48:18 +0000

    sci-libs/matio: Bump to 1.5.19
    
    Bug: https://bugs.gentoo.org/716258
    Bug: https://bugs.gentoo.org/717942
    Closes: https://bugs.gentoo.org/603218
    Closes: https://bugs.gentoo.org/677366
    Closes: https://bugs.gentoo.org/716258
    Signed-off-by: Jakov Smolic <jakov.smolic@sartura.hr>
    Signed-off-by: David Seifert <soap@gentoo.org>

 sci-libs/matio/Manifest            |  1 +
 sci-libs/matio/matio-1.5.19.ebuild | 46 ++++++++++++++++++++++++++++++++++++++
 2 files changed, 47 insertions(+)

Comment 3 John Helmert III archtester

2021-01-24 19:53:50 UTC

All done, thanks!