Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 710734 (CVE-2020-7105) - <dev-libs/hiredis-0.14.1: NULL pointer dereference in async.c and dict.c in libhiredis.a (CVE-2020-7105)
Summary: <dev-libs/hiredis-0.14.1: NULL pointer dereference in async.c and dict.c in l...
Status: RESOLVED FIXED
Alias: CVE-2020-7105
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL:
Whiteboard: B3 [glsa cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2020-02-25 00:07 UTC by GLSAMaker/CVETool Bot
Modified: 2020-04-26 00:21 UTC (History)
3 users (show)

See Also:
Package list:
dev-libs/hiredis-0.14.1
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description GLSAMaker/CVETool Bot gentoo-dev 2020-02-25 00:07:02 UTC
CVE-2020-7105 (https://nvd.nist.gov/vuln/detail/CVE-2020-7105):
  async.c and dict.c in libhiredis.a in hiredis through 0.14.0 allow a NULL
  pointer dereference because malloc return values are unchecked.
Comment 1 Thomas Deutschmann (RETIRED) gentoo-dev 2020-02-25 00:08:08 UTC
Upstream patches:

https://github.com/redis/hiredis/pull/754
https://github.com/redis/hiredis/pull/756
Comment 2 Larry the Git Cow gentoo-dev 2020-03-20 20:23:01 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b5156bbc233ee9e74417ccde7bc7430be672cb9f

commit b5156bbc233ee9e74417ccde7bc7430be672cb9f
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2020-03-20 20:21:57 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2020-03-20 20:21:57 +0000

    dev-libs/hiredis: bump to v0.14.1
    
    Bug: https://bugs.gentoo.org/710734
    Package-Manager: Portage-2.3.94, Repoman-2.3.21
    Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>

 dev-libs/hiredis/Manifest              |  1 +
 dev-libs/hiredis/hiredis-0.14.1.ebuild | 79 ++++++++++++++++++++++++++++++++++
 2 files changed, 80 insertions(+)
Comment 3 Agostino Sarubbo gentoo-dev 2020-03-21 16:19:43 UTC
s390 stable
Comment 4 Agostino Sarubbo gentoo-dev 2020-03-21 16:20:39 UTC
sparc stable
Comment 5 Agostino Sarubbo gentoo-dev 2020-03-21 16:25:34 UTC
amd64 stable
Comment 6 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2020-03-21 21:48:54 UTC
note: cannot cleanup until we figure out what to do about dev-python/hiredis?

https://github.com/gentoo/gentoo/commit/1708e9d77e76b36c82f271bd1b03ff1c72b263a0

The ABI change was minimal in this case:
https://abi-laboratory.pro/index.php?view=timeline&l=hiredis
Comment 7 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2020-03-21 23:00:25 UTC
(In reply to sam_c (Security Padawan) from comment #6)
> note: cannot cleanup until we figure out what to do about dev-python/hiredis?
> 
> https://github.com/gentoo/gentoo/commit/
> 1708e9d77e76b36c82f271bd1b03ff1c72b263a0
> 
> The ABI change was minimal in this case:
> https://abi-laboratory.pro/index.php?view=timeline&l=hiredis

I misunderstood what this meant, please ignore!
Comment 8 Agostino Sarubbo gentoo-dev 2020-03-22 10:30:28 UTC
arm stable
Comment 9 Agostino Sarubbo gentoo-dev 2020-03-22 10:38:09 UTC
x86 stable
Comment 10 Agostino Sarubbo gentoo-dev 2020-03-22 10:43:47 UTC
ia64 stable
Comment 11 Agostino Sarubbo gentoo-dev 2020-03-23 11:04:54 UTC
ppc stable
Comment 12 Rolf Eike Beer archtester 2020-03-23 21:20:24 UTC
hppa stable
Comment 13 Agostino Sarubbo gentoo-dev 2020-03-25 14:55:24 UTC
ppc64 stable
Comment 14 Mart Raudsepp gentoo-dev 2020-04-01 22:39:41 UTC
arm64 stable
Comment 15 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2020-04-02 08:55:06 UTC
@maintainer(s), please cleanup
Comment 16 Yury German Gentoo Infrastructure gentoo-dev 2020-04-05 23:04:32 UTC
Arches, Thank you for your work.
GLSA Vote: Yes

Maintainer(s), please drop the vulnerable version(s).
Comment 17 NATTkA bot gentoo-dev 2020-04-06 14:49:14 UTC
Resetting sanity check; keywords are not fully specified and arches are not CC-ed.
Comment 18 Larry the Git Cow gentoo-dev 2020-04-10 22:12:22 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=7e63f04c278459cbb77c1631048619f55139b948

commit 7e63f04c278459cbb77c1631048619f55139b948
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2020-04-10 22:12:13 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2020-04-10 22:12:13 +0000

    dev-libs/hiredis: security cleanup
    
    Bug: https://bugs.gentoo.org/710734
    Package-Manager: Portage-2.3.98, Repoman-2.3.22
    Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>

 dev-libs/hiredis/Manifest              |  2 -
 dev-libs/hiredis/hiredis-0.13.3.ebuild | 79 ----------------------------------
 dev-libs/hiredis/hiredis-0.14.0.ebuild | 79 ----------------------------------
 3 files changed, 160 deletions(-)
Comment 19 Larry the Git Cow gentoo-dev 2020-04-12 06:29:35 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=2acf7b525f116eb46f7a62ee404f7d62bb18c712

commit 2acf7b525f116eb46f7a62ee404f7d62bb18c712
Author:     Sam James (sam_c) <sam@cmpct.info>
AuthorDate: 2020-04-09 03:40:15 +0000
Commit:     Joonas Niilola <juippis@gentoo.org>
CommitDate: 2020-04-12 06:29:06 +0000

    dev-libs/hiredis: drop vulnerable
    
    Bug: https://bugs.gentoo.org/710734
    Package-Manager: Portage-2.3.89, Repoman-2.3.20
    Signed-off-by: Sam James (sam_c) <sam@cmpct.info>
    Closes: https://github.com/gentoo/gentoo/pull/15272
    Signed-off-by: Joonas Niilola <juippis@gentoo.org>

 dev-libs/hiredis/Manifest              |  2 -
 dev-libs/hiredis/hiredis-0.13.3.ebuild | 79 ----------------------------------
 dev-libs/hiredis/hiredis-0.14.0.ebuild | 79 ----------------------------------
 3 files changed, 160 deletions(-)

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=affbbbb69cedad882ac9906141f2f63d7d9f3525

commit affbbbb69cedad882ac9906141f2f63d7d9f3525
Author:     Sam James (sam_c) <sam@cmpct.info>
AuthorDate: 2020-04-11 05:17:08 +0000
Commit:     Joonas Niilola <juippis@gentoo.org>
CommitDate: 2020-04-12 06:29:01 +0000

    dev-python/hiredis: drop to ~arch, cleanup
    
    Needed to clean up vulnerable dev-libs/hiredis.
    No reverse dependencies.
    
    Bug: https://bugs.gentoo.org/710734
    Acked-by: Michał Górny <mgorny@gentoo.org>
    Signed-off-by: Sam James (sam_c) <sam@cmpct.info>
    Signed-off-by: Joonas Niilola <juippis@gentoo.org>

 dev-python/hiredis/Manifest                |  1 -
 dev-python/hiredis/hiredis-0.2.0-r1.ebuild | 21 ---------------------
 dev-python/hiredis/hiredis-0.2.0-r3.ebuild | 24 ------------------------
 3 files changed, 46 deletions(-)
Comment 20 Aaron Bauman (RETIRED) gentoo-dev 2020-04-26 00:21:53 UTC
No GLSA.

Tree is clean.