Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 635202 (CVE-2017-9093, CVE-2017-9094, CVE-2017-9201, CVE-2017-9202, CVE-2017-9203, CVE-2017-9204, CVE-2017-9205, CVE-2017-9206, CVE-2017-9207) - <media-gfx/imageworsener-1.3.2: Multiple vulnerabilities
Summary: <media-gfx/imageworsener-1.3.2: Multiple vulnerabilities
Status: RESOLVED FIXED
Alias: CVE-2017-9093, CVE-2017-9094, CVE-2017-9201, CVE-2017-9202, CVE-2017-9203, CVE-2017-9204, CVE-2017-9205, CVE-2017-9206, CVE-2017-9207
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL: https://blogs.gentoo.org/ago/2017/05/...
Whiteboard: B3 [noglsa cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2017-10-23 17:30 UTC by GLSAMaker/CVETool Bot
Modified: 2018-01-21 00:50 UTC (History)
1 user (show)

See Also:
Package list:
=media-gfx/imageworsener-1.3.2
Runtime testing required: ---
stable-bot: sanity-check+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description GLSAMaker/CVETool Bot gentoo-dev 2017-10-23 17:30:50 UTC 
CVE-2017-9207 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9207):
  The iw_get_ui16be function in imagew-util.c:422:24 in libimageworsener.a in
  ImageWorsener 1.3.1 allows remote attackers to cause a denial of service
  (heap-based buffer over-read) via a crafted image, related to imagew-jpeg.c.

CVE-2017-9206 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9206):
  The iw_get_ui16le function in imagew-util.c:405:23 in libimageworsener.a in
  ImageWorsener 1.3.1 allows remote attackers to cause a denial of service
  (heap-based buffer over-read) via a crafted image, related to imagew-jpeg.c.

CVE-2017-9205 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9205):
  The iw_get_ui16be function in imagew-util.c:422:24 in libimageworsener.a in
  ImageWorsener 1.3.1 allows remote attackers to cause a denial of service
  (invalid read and SEGV) via a crafted image, related to imagew-jpeg.c.

CVE-2017-9204 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9204):
  The iw_get_ui16le function in imagew-util.c:405:23 in libimageworsener.a in
  ImageWorsener 1.3.1 allows remote attackers to cause a denial of service
  (invalid read and SEGV) via a crafted image, related to imagew-jpeg.c.

CVE-2017-9203 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9203):
  imagew-main.c:960:12 in libimageworsener.a in ImageWorsener 1.3.1 allows
  remote attackers to cause a denial of service (buffer underflow) via a
  crafted image, related to imagew-bmp.c.

CVE-2017-9202 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9202):
  imagew-cmd.c:854:45 in libimageworsener.a in ImageWorsener 1.3.1 allows
  remote attackers to cause a denial of service (divide-by-zero error) via a
  crafted image, related to imagew-api.c.

CVE-2017-9201 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9201):
  imagew-cmd.c:850:46 in libimageworsener.a in ImageWorsener 1.3.1 allows
  remote attackers to cause a denial of service (divide-by-zero error) via a
  crafted image, related to imagew-api.c.

CVE-2017-9094 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9094):
  The lzw_add_to_dict function in imagew-gif.c in libimageworsener.a in
  ImageWorsener 1.3.1 allows remote attackers to cause a denial of service
  (infinite loop) via a crafted image.

CVE-2017-9093 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9093):
  The my_skip_input_data_fn function in imagew-jpeg.c in libimageworsener.a in
  ImageWorsener 1.3.1 allows remote attackers to cause a denial of service
  (infinite loop) via a crafted image.
Comment 1 Christopher Díaz Riveros (RETIRED) gentoo-dev Security 2017-10-23 17:33:16 UTC 
@Maintainer please call for stabilization when ready.

Thank you
Comment 2 Sebastian Pipping gentoo-dev 2017-10-25 13:35:18 UTC 
(In reply to Christopher Díaz from comment #1)
> @Maintainer please call for stabilization when ready.

No objections, no known open bugs.

Adding arches: amd64, x86
Comment 3 Christopher Díaz Riveros (RETIRED) gentoo-dev Security 2017-10-25 16:05:28 UTC 
(In reply to Sebastian Pipping from comment #2)
> No objections, no known open bugs.
> 
> Adding arches: amd64, x86

@Arches please test and mark stable
Comment 4 Thomas Deutschmann (RETIRED) gentoo-dev 2017-10-26 17:38:43 UTC 
x86 stable
Comment 5 Agostino Sarubbo gentoo-dev 2017-10-29 15:55:37 UTC 
amd64 stable.

Maintainer(s), please cleanup.
Security, please vote.
Comment 6 Aaron Bauman (RETIRED) gentoo-dev 2017-10-30 00:17:10 UTC 
GLSA Vote: No
Comment 7 Aaron Bauman (RETIRED) gentoo-dev 2018-01-20 15:12:56 UTC 
@maintainer, please clean the vulnerable version from the tree.
Comment 8 Aaron Bauman (RETIRED) gentoo-dev 2018-01-21 00:50:03 UTC 
Simple cleanup.  Tree is clean:

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1477e2bd144f4151b87f1122ceebc3ed0b60b659