Summary: | media-libs/libsndfile-1.0.17 Heap-based buffer overflow in flac.c (CVE-2007-4974) | ||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Product: | Gentoo Security | Reporter: | Robert Buchholz (RETIRED) <rbu> | ||||||||||
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> | ||||||||||
Status: | RESOLVED FIXED | ||||||||||||
Severity: | normal | CC: | aballier, ssuominen | ||||||||||
Priority: | High | ||||||||||||
Version: | unspecified | ||||||||||||
Hardware: | All | ||||||||||||
OS: | Linux | ||||||||||||
Whiteboard: | C2? [glsa] | ||||||||||||
Package list: | Runtime testing required: | --- | |||||||||||
Attachments: |
|
Description
Robert Buchholz (RETIRED)
2007-09-17 16:52:27 UTC
Created attachment 131163 [details, diff]
libsndfile-1.0.17-flac-buffer-overflow.patch
Backported patch (not approved by upstream yet).
Created attachment 131171 [details, diff]
libsndfile-1.0.17-flac-buffer-overflow.patch
Updated, upstream approved patch.
Setting whiteboard and cc'ing maintainers. aballier and drac, can you please test the patch and prepare an ebuild. Please attach the ebuild to this bug and do not commit it to CVS yet. Created attachment 131269 [details]
ebuild
--- libsndfile-1.0.17.ebuild 2007-08-20 13:17:45.000000000 +0200
+++ libsndfile-1.0.17-r1.ebuild 2007-09-19 07:25:04.000000000 +0200
@@ -31,6 +31,7 @@
epatch "${WORKDIR}/${P}+flac-1.1.3.patch"
epatch "${FILESDIR}/${P}-ogg.patch"
+ epatch "${FILESDIR}/${P}-flac-buffer-overflow.patch"
eautoreconf
epunt_cxx
}
patch seems to work fine from my basic testing.
Alexis, we decided not to keep this confidential. Please commit the the ebuild and patch. Thanks! Opening at the request of reporter. [14:15] <rbu> i'll grab some food. please unrestrict bug https://bugs.gentoo.org/192834 when you get back (In reply to comment #5) > Alexis, we decided not to keep this confidential. Please commit the the ebuild > and patch. done, I had forgot to set keywords to ~all in my attached ebuild, fixed that before comitting Arches, please test and mark stable libsndfile-1.0.17-r1. Targets are: "alpha amd64 arm hppa ia64 mips ppc ppc64 sh sparc x86" Also, degrading to C2 because the flac use flag is disabled by default. Stable for HPPA. CVE assigned CVE-2007-4974 to this issue. x86 stable alpha/ia64 stable ppc stable amd64 stable ppc64 stable Created attachment 132116 [details]
emerge --info output
Tested media-libs/libsndfile-1.0.17-r1 (USE="alsa flac sqlite") on sparc.
No bugs found.
sparc stable, thanks Friedrich GLSA 200710-04, thanks anyone. |