| Summary: | media-libs/audiofile: heap-buffer-overflow in FLAC.cpp:133:11 | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> | ||||||
| Component: | Vulnerabilities | Assignee: | Gentoo Security <security> | ||||||
| Status: | CONFIRMED --- | ||||||||
| Severity: | normal | CC: | sound | ||||||
| Priority: | Normal | ||||||||
| Version: | unspecified | ||||||||
| Hardware: | All | ||||||||
| OS: | Linux | ||||||||
| See Also: | https://bugs.gentoo.org/show_bug.cgi?id=914107 | ||||||||
| Whiteboard: | B3 [upstream] | ||||||||
| Package list: | Runtime testing required: | --- | |||||||
| Attachments: |
|
||||||||
Created attachment 872146 [details]
testcase
Maybe you could work on a patch? Or test with the Debian fork? Or report to Debian? |
Created attachment 872145 [details] stacktrace All of us know that audiofile is in a particular situation. Years ago I (and probably someone else too) reported a lot of security holes, that were partially fixed upstream. Now seems that we are apply a debian patchset to fix reported vulnerabilities, so our version is a bit different from 'pure upstream' considering also that last commit upstream was 7 years ago. So this issue occurs in the 0.3.6-r5 version that we have in the main tree and I did not test further version (like master, considering what said above) I know that you know, but for completeness I should say that you can see the same error when you compile the package with -fsanitize=address, or if you don't like it, maybe valgrind will do the same or playing a bit with gdb should show up to the same conclusion. I'm attaching the full log and the testcase. The command to reproduce is: sfinfo $TESTCASE