Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 834010 (CVE-2021-3700)

Summary: <sys-apps/usbredir-0.12.0: use-after-free
Product: Gentoo Security Reporter: John Helmert III <ajak>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: IN_PROGRESS ---    
Severity: minor CC: base-system, virtualization
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://gitlab.freedesktop.org/spice/usbredir/-/commit/03c519ff5831ba
Whiteboard: B3 [glsa?]
Package list:
Runtime testing required: ---
Bug Depends on: 834022    
Bug Blocks:    

Description John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-02-24 22:28:55 UTC
CVE-2021-3700 (https://bugzilla.redhat.com/show_bug.cgi?id=1992830):

A use-after-free vulnerability was found in usbredir in versions prior to 0.11.0 in the usbredirparser_serialize() in usbredirparser/usbredirparser.c. This issue occurs when serializing large amounts of buffered write data in the case of a slow or blocked destination.
Comment 1 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-02-25 22:51:02 UTC
Please cleanup
Comment 2 Larry the Git Cow gentoo-dev 2022-02-26 08:33:31 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=6155841f76ceaeaab548ff7be7eff3b7485b58b1

commit 6155841f76ceaeaab548ff7be7eff3b7485b58b1
Author:     Joonas Niilola <juippis@gentoo.org>
AuthorDate: 2022-02-26 08:33:00 +0000
Commit:     Joonas Niilola <juippis@gentoo.org>
CommitDate: 2022-02-26 08:33:00 +0000

    sys-apps/usbredir: drop 0.9.0
    
    Bug: https://bugs.gentoo.org/834010
    Signed-off-by: Joonas Niilola <juippis@gentoo.org>

 sys-apps/usbredir/Manifest              |  1 -
 sys-apps/usbredir/usbredir-0.9.0.ebuild | 45 ---------------------------------
 2 files changed, 46 deletions(-)