919157 – (CVE-2023-39976) sys-cluster/libqb: buffer overflow via long log messages

Bug 919157 (CVE-2023-39976) - sys-cluster/libqb: buffer overflow via long log messages

Summary: sys-cluster/libqb: buffer overflow via long log messages

Status:	CONFIRMED

Alias:	CVE-2023-39976

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:	https://github.com/ClusterLabs/libqb/...
Whiteboard:	B2 [ebuild]
Keywords:	PullRequest

Depends on:
Blocks:

Reported:	2023-12-04 16:38 UTC by Allen Webb
Modified:	2024-04-22 23:36 UTC (History)
CC List:	3 users (show)

See Also:	https://github.com/gentoo/gentoo/pull/36368
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Allen Webb 2023-12-04 16:38:37 UTC

From the NVD: https://nvd.nist.gov/vuln/detail/CVE-2023-39976

```
log_blackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered.
```

Reproducible: Always

Comment 1 Hans de Graaff gentoo-dev

2023-12-05 07:22:19 UTC

Looks like this is fixed in 2.0.8: https://github.com/ClusterLabs/libqb/releases/tag/v2.0.8

Comment 2 Allen Webb 2024-01-10 13:44:06 UTC

On ChromeOS we have moved to libqqb 2.0.8 with the same ebuild as 2.0.4 with just a name change and the newer source archive + digests.

https://chromium-review.googlesource.com/c/chromiumos/overlays/chromiumos-overlay/+/5177738

Comment 3 John Helmert III archtester

2024-02-12 01:52:29 UTC

(In reply to Allen Webb from comment #2)
> On ChromeOS we have moved to libqqb 2.0.8 with the same ebuild as 2.0.4 with
> just a name change and the newer source archive + digests.
> 
> https://chromium-review.googlesource.com/c/chromiumos/overlays/chromiumos-
> overlay/+/5177738

Care to make a PR? :)