Created attachment 462980 [details] stacktrace I found an out of bounds read in scanelf in pax-utils-1.2.2 Command to reproduce: scanelf -s '*' -axetrnibSDIYZB $FILE Reproducer: https://github.com/asarubbo/poc/blob/master/00169-pax-utils-scanelf-oobread1 Unfortunately I'm unable to get a valid stacktrace.
Created attachment 462982 [details] stacktrace (In reply to Agostino Sarubbo from comment #0) > Unfortunately I'm unable to get a valid stacktrace. nvm. I can.
should be fixed here: https://gitweb.gentoo.org/proj/pax-utils.git/commit/?id=e577c5b7e230c52e5fc4fa40e4e9014c634b3c1d
should be fixed by: https://gitweb.gentoo.org/proj/pax-utils.git/commit/?id=858939ea6ad63f1acb4ec74bba705c197a67d559
Ping. Is this completely fixed? Can we close the report? Thank you, Gentoo Security Padawan ChrisADR
@arches, please stabilize.
Disregard, this is not fixed in 1.2.2.
fwiw, just to confirm. git describe --tags 858939ea6ad63f1acb4ec74bba705c197a67d559 v1.2.2-5-g858939e
fixed in app-misc/pax-utils-1.2.3 and newer.
ppc64 stable
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=520c49d5731bb9d63d0f197c370625cb152d9e89 commit 520c49d5731bb9d63d0f197c370625cb152d9e89 Author: Rolf Eike Beer <eike@sf-mail.de> AuthorDate: 2018-04-04 17:36:09 +0000 Commit: Sergei Trofimovich <slyfox@gentoo.org> CommitDate: 2018-04-04 22:25:41 +0000 app-misc/pax-utils: stable 1.2.3 for sparc Bug: https://bugs.gentoo.org/608766 Package-Manager: Portage-2.3.24, Repoman-2.3.6 RepoMan-Options: --include-arches="sparc" app-misc/pax-utils/pax-utils-1.2.3.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)}
sparc stable
GLSA Vote: No
commit 1b23a73f6a51d28568444f367daf1af963db31bf Author: Aaron Bauman <bman@gentoo.org> Date: Sun Apr 8 09:06:48 2018 -0400 app-misc/pax-utils: stabilize ppc commit 59ee764c17315e1153427f351f7d01da0933a7da Author: Markus Meier <maekke@gentoo.org> Date: Sun Apr 8 12:46:38 2018 +0200 app-misc/pax-utils: arm stable, bug #607896