Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 724532 (CVE-2016-9011) - media-libs/libwmf: Flawed malloc implementation allowing denial of service (CVE-2016-9011)
Summary: media-libs/libwmf: Flawed malloc implementation allowing denial of service (C...
Status: IN_PROGRESS
Alias: CVE-2016-9011
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL: https://sources.debian.org/patches/li...
Whiteboard: B3 [upstream/ebuild cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2020-05-22 07:27 UTC by Sam James
Modified: 2020-05-22 09:33 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments
libwmf-0.2.12-gdk-pixbuf.patch (libwmf-0.2.12-gdk-pixbuf.patch,863 bytes, patch)
2020-05-22 09:32 UTC, Andreas Sturmlechner
no flags Details | Diff
libwmf-0.2.12-use-system-fonts.patch (libwmf-0.2.12-use-system-fonts.patch,1004 bytes, patch)
2020-05-22 09:33 UTC, Andreas Sturmlechner
no flags Details | Diff
libwmf-0.2.12-nullptr-crashfix.patch (libwmf-0.2.12-nullptr-crashfix.patch,743 bytes, patch)
2020-05-22 09:33 UTC, Andreas Sturmlechner
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Sam James archtester gentoo-dev Security 2020-05-22 07:27:55 UTC
Description:
"The wmf_malloc function in api.c in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (application crash) via a crafted wmf file, which triggers a memory allocation failure."
Comment 1 Andreas Sturmlechner gentoo-dev 2020-05-22 09:31:54 UTC
New upstream with 0.2.12 release, packaged by several distributions already:
https://github.com/caolanm/libwmf/

Those are the patches that would remain (part adapted) for that bump:
> "${FILESDIR}"/${PN}-0.2.8.4-build.patch
> "${FILESDIR}"/${P}-gdk-pixbuf.patch
> "${FILESDIR}"/${PN}-0.2.8.4-libpng-1.5.patch
> "${FILESDIR}"/${PN}-0.2.8.4-pngfix.patch
> "${FILESDIR}"/${PN}-0.2.8.4-use-freetype2-pkg-config.patch
> "${FILESDIR}"/${P}-use-system-fonts.patch
> "${FILESDIR}"/${P}-nullptr-crashfix.patch # git master


However, build system breaks by running eautoreconf, and I lack the motivation to dig deeper.
Comment 2 Andreas Sturmlechner gentoo-dev 2020-05-22 09:32:53 UTC
Created attachment 640866 [details, diff]
libwmf-0.2.12-gdk-pixbuf.patch
Comment 3 Andreas Sturmlechner gentoo-dev 2020-05-22 09:33:14 UTC
Created attachment 640868 [details, diff]
libwmf-0.2.12-use-system-fonts.patch
Comment 4 Andreas Sturmlechner gentoo-dev 2020-05-22 09:33:41 UTC
Created attachment 640870 [details, diff]
libwmf-0.2.12-nullptr-crashfix.patch