Summary: | <media-libs/libexif-0.6.21-r2: out-of-bounds heap read vulnerability causes denial of service | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Aleksandr Wagner (Kivak) <alwag> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | graphics+disabled |
Priority: | Normal | Keywords: | STABLEREQ |
Version: | unspecified | Flags: | stable-bot:
sanity-check+
|
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7544 | ||
Whiteboard: | B3 [noglsa cve] | ||
Package list: |
media-libs/libexif-0.6.21-r2
|
Runtime testing required: | --- |
Description
Aleksandr Wagner (Kivak)
2017-09-23 15:55:34 UTC
@maintainer(s), both vulnerable and possible fixed versions are in tree. please call for stabilization if needed. Gentoo Security Padawan Daj Uan (jmbailey/mbailey_j) The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=96e70c303fbdd5949b7235132de1d4bf4a88a950 commit 96e70c303fbdd5949b7235132de1d4bf4a88a950 Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2018-09-18 09:20:08 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2018-09-18 09:22:45 +0000 media-libs/libexif: Fix CVE-2017-7544 Bug: https://bugs.gentoo.org/631850 Package-Manager: Portage-2.3.49, Repoman-2.3.10 .../files/libexif-0.6.21-CVE-2017-7544.patch | 30 ++++++++++++++++++++++ media-libs/libexif/libexif-0.6.21-r2.ebuild | 5 +++- 2 files changed, 34 insertions(+), 1 deletion(-) oh well... ppc/ppc64 stable amd64 stable sparc done. x86 stable ia64 stable arm stable Stable on alpha. No revdeps for sh and s390. hppa lost stable GLSA vote: no |