446720 – (CVE-2013-0899) <media-libs/opus-1.0.2-r2 : Out of bounds read (CVE-2013-0899)

Bug 446720 (CVE-2013-0899) - <media-libs/opus-1.0.2-r2 : Out of bounds read (CVE-2013-0899)

Summary: <media-libs/opus-1.0.2-r2 : Out of bounds read (CVE-2013-0899)

Status:	RESOLVED FIXED

Alias:	CVE-2013-0899

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal minor (vote)
Assignee:	Gentoo Security

URL:	http://www.opus-codec.org/downloads/
Whiteboard:	B3 [noglsa]
Keywords:

Depends on:
Blocks:

Reported:	2012-12-10 12:13 UTC by Tomasz Golinski
Modified:	2013-09-03 16:43 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Tomasz Golinski 2012-12-10 12:13:31 UTC

Opus 1.0.2 fixes an out-of-bounds read that could be triggered by a malicious Opus packet causing an integer wrap-around in the padding code. Considering that the packet would have to be at least 16 MB in size and that no out-of-bounds write is possible, the severity is very low. Other changes include fixes and improvements to the PLC and hybrid mode quality improvements. As usual, this release is fully compliant with the Opus specification. 

That might resolve bug 436548 as well.

There is also a helper library: opusfile 0.2 which is not yet in portage and it is not used by any package yet. However, I know of at least one package which will depend on it in the future for opus playback: (media-sound/moc). It would be nice to have it in the tree before that.

Comment 1 Hanno Böck gentoo-dev

2012-12-11 12:34:11 UTC

"out of bounds read" is a - although low impact - security issue, so I reassign this to security. CVE is requested on oss-security.

Comment 2 Chris Reffett (RETIRED) gentoo-dev

2013-07-08 21:41:04 UTC

CVE assigned. Maintainer, please ack a stable of 1.0.2-r2.

Comment 3 Chris Reffett (RETIRED) gentoo-dev

2013-08-23 15:16:09 UTC

Maintainer timeout. Arches, please stabilize:
=media-libs/opus-1.0.2-r2
Target arches: alpha amd64 arm hppa ppc ppc64 x86

Comment 4 Jeroen Roovers (RETIRED) gentoo-dev

2013-08-23 16:02:17 UTC

Stable for HPPA.

Comment 5 Agostino Sarubbo gentoo-dev

2013-08-23 19:25:14 UTC

amd64 stable

Comment 6 Agostino Sarubbo gentoo-dev

2013-08-23 19:25:44 UTC

x86 stable

Comment 7 Agostino Sarubbo gentoo-dev

2013-08-24 12:34:28 UTC

ppc64 stable

Comment 8 Agostino Sarubbo gentoo-dev

2013-08-24 15:53:43 UTC

arm stable

Comment 9 Agostino Sarubbo gentoo-dev

2013-08-26 16:51:09 UTC

ppc stable

Comment 10 Agostino Sarubbo gentoo-dev

2013-08-28 12:06:59 UTC

alpha stable

Comment 11 Sergey Popov gentoo-dev

2013-08-30 11:19:30 UTC

Thanks for your work

GLSA vote: no

Comment 12 Tobias Heinlein (RETIRED) gentoo-dev

2013-09-03 16:43:11 UTC

NO too, thanks everyone.