Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 839741 (CVE-2018-20544, CVE-2018-20545, CVE-2018-20546, CVE-2018-20547, CVE-2018-20549) - <media-libs/libcaca-0.99_beta19-r4: multiple vulnerabilities
Summary: <media-libs/libcaca-0.99_beta19-r4: multiple vulnerabilities
Status: CONFIRMED
Alias: CVE-2018-20544, CVE-2018-20545, CVE-2018-20546, CVE-2018-20547, CVE-2018-20549
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor
Assignee: Gentoo Security
URL:
Whiteboard: B4 [glsa?]
Keywords:
Depends on:
Blocks:
 
Reported: 2022-04-20 16:37 UTC by John Helmert III
Modified: 2024-09-16 02:39 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-04-20 16:37:37 UTC
CVE-2018-20546 (https://github.com/cacalabs/libcaca/issues/38):

There is an illegal READ memory access at caca/dither.c (function get_rgba_default) in libcaca 0.99.beta19 for the default bpp case.

Patch: https://github.com/cacalabs/libcaca/commit/1022d97496c7899e8641515af363381b31ae2f05~

CVE-2018-20545 (https://github.com/cacalabs/libcaca/issues/37):

There is an illegal WRITE memory access at common-image.c (function load_image) in libcaca 0.99.beta19 for 4bpp data.

Patch: https://github.com/cacalabs/libcaca/commit/3e52dabe3e64dc50f4422effe364a1457a8a8592

Patches in 0.99_beta20.
Comment 1 Christopher Fore 2024-04-22 03:28:44 UTC
Looks like this was addressed in:

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=9e49df2222085dded48b58473bc2fd6347f8352f
Comment 2 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2024-09-16 02:39:11 UTC
Interesting. There's 3 new CVEs in that commit message which aren't tracked by a Gentoo bug: CVE-2018-20544 CVE-2018-20547 CVE-2018-20549

And looks like the patch named "CVE-2018-20545+20547+20549.patch" actually fixes -20545, -20548, and -20549 according to the upstream commit message:

"""
Fixes: #37 (CVE-2018-20545)
Fixes: #40 (CVE-2018-20548)
Fixes: #41 (CVE-2018-20549)
"""