Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 670456 (CVE-2018-18928) - <dev-libs/icu-63.1-r1: Integer Overflow
Summary: <dev-libs/icu-63.1-r1: Integer Overflow
Status: RESOLVED FIXED
Alias: CVE-2018-18928
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: B3 [noglsa cve]
Whiteboard:
Keywords:
: icu-63.1-stable (view as bug list)
Depends on: icu-61 668280 668282 674372
Blocks: 673446
  Show dependency tree
 
Reported: 2018-11-06 03:39 UTC by Michael Boyle
Modified: 2019-08-12 23:16 UTC (History)
0 users

See Also:
Package list:
dev-libs/icu-63.1-r1 alpha amd64 arm arm64 ia64 ppc ppc64 x86 hppa s390 sparc dev-libs/icu-layoutex-63.1 alpha amd64 ia64 ppc ppc64 x86 hppa sparc
Runtime testing required: ---
stable-bot: sanity-check+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Michael Boyle 2018-11-06 03:39:56 UTC 
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp.

Possible patch:https://github.com/unicode-org/icu/commit/53d8c8f3d181d87a6aa925b449b51c4a2c922a51
Comment 1 Andreas Sturmlechner gentoo-dev 2018-11-09 01:59:29 UTC 
*** Bug 668284 has been marked as a duplicate of this bug. ***
Comment 2 Larry the Git Cow gentoo-dev 2018-11-09 02:11:01 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=864e6a833c7eca237bdd792a831948c2b5b8d6c6

commit 864e6a833c7eca237bdd792a831948c2b5b8d6c6
Author:     Andreas Sturmlechner <asturm@gentoo.org>
AuthorDate: 2018-11-09 02:10:01 +0000
Commit:     Andreas Sturmlechner <asturm@gentoo.org>
CommitDate: 2018-11-09 02:10:01 +0000

    dev-libs/icu: Fix CVE-2018-18928
    
    Bug: https://bugs.gentoo.org/670456
    Package-Manager: Portage-2.3.51, Repoman-2.3.12
    Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>

 dev-libs/icu/files/icu-63.1-CVE-2018-18928.patch |  62 +++++++++
 dev-libs/icu/icu-63.1-r1.ebuild                  | 161 +++++++++++++++++++++++
 2 files changed, 223 insertions(+)
Comment 3 Andreas Sturmlechner gentoo-dev 2018-11-09 02:12:22 UTC 
Contrary to $summary, icu-63.1 had to be patched for the fix.
Comment 4 Andreas Sturmlechner gentoo-dev 2018-12-29 20:13:00 UTC 
Arches, please stabilise.

amd64 + x86, please stabilise together with LO in bug 673446.
Comment 5 Matt Turner gentoo-dev 2018-12-30 17:16:02 UTC 
hppa stable
Comment 6 Rolf Eike Beer archtester 2018-12-31 12:36:10 UTC 
sparc stable
Comment 7 Sergei Trofimovich (RETIRED) gentoo-dev 2019-01-01 12:07:53 UTC 
ia64 stable
Comment 8 Matt Turner gentoo-dev 2019-01-02 02:10:23 UTC 
alpha stable
Comment 9 Matt Turner gentoo-dev 2019-01-02 02:25:13 UTC 
ppc/ppc64 stable
Comment 10 Mikle Kolyada (RETIRED) archtester Gentoo Infrastructure gentoo-dev Security 2019-01-02 09:54:45 UTC 
amd64 stable
Comment 11 Mart Raudsepp gentoo-dev 2019-01-06 14:53:33 UTC 
arm64 stable
Comment 12 Thomas Deutschmann (RETIRED) gentoo-dev 2019-01-08 19:57:19 UTC 
x86 stable
Comment 13 Mikle Kolyada (RETIRED) archtester Gentoo Infrastructure gentoo-dev Security 2019-01-16 14:45:29 UTC 
s390 stable
Comment 14 Mikle Kolyada (RETIRED) archtester Gentoo Infrastructure gentoo-dev Security 2019-01-23 13:30:22 UTC 
arm stable
Comment 15 Larry the Git Cow gentoo-dev 2019-02-01 20:14:40 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1da80dd7db754e635f505984fd291b996dd3a416

commit 1da80dd7db754e635f505984fd291b996dd3a416
Author:     Andreas Sturmlechner <asturm@gentoo.org>
AuthorDate: 2019-02-01 20:13:59 +0000
Commit:     Andreas Sturmlechner <asturm@gentoo.org>
CommitDate: 2019-02-01 20:14:20 +0000

    dev-libs/icu: Cleanup vulnerable 60.2
    
    Bug: https://bugs.gentoo.org/670456
    Package-Manager: Portage-2.3.59, Repoman-2.3.12
    Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>

 dev-libs/icu/Manifest        |   1 -
 dev-libs/icu/icu-60.2.ebuild | 163 -------------------------------------------
 2 files changed, 164 deletions(-)
Comment 16 Larry the Git Cow gentoo-dev 2019-06-27 10:48:44 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=99bf853e60a2ae531eadd00a80a6fdef845c3f33

commit 99bf853e60a2ae531eadd00a80a6fdef845c3f33
Author:     Andreas Sturmlechner <asturm@gentoo.org>
AuthorDate: 2019-06-27 09:14:35 +0000
Commit:     Andreas Sturmlechner <asturm@gentoo.org>
CommitDate: 2019-06-27 10:47:27 +0000

    dev-libs/icu: Drop 58.2-r1, security cleanup
    
    Bug: https://bugs.gentoo.org/670456
    Package-Manager: Portage-2.3.67, Repoman-2.3.16
    Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>

 dev-libs/icu/Manifest                           |   1 -
 dev-libs/icu/files/icu-58.1-iterator.patch      | 127 -----------------
 dev-libs/icu/files/icu-58.2-CVE-2017-7867.patch | 155 ---------------------
 dev-libs/icu/files/icu-58.2-darwin.patch        |  55 --------
 dev-libs/icu/files/icu-58.2-glibc226.patch      |  16 ---
 dev-libs/icu/icu-58.2-r1.ebuild                 | 172 ------------------------
 6 files changed, 526 deletions(-)
Comment 17 Andreas Sturmlechner gentoo-dev 2019-07-07 17:24:26 UTC 
office are done here, anyway.