Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 634798 (CVE-2017-9218, CVE-2017-9219, CVE-2017-9220, CVE-2017-9221, CVE-2017-9222, CVE-2017-9223, CVE-2017-9253, CVE-2017-9254, CVE-2017-9255, CVE-2017-9256, CVE-2017-9257) - <media-libs/faad2-2.8.8: Multiple vulnerabilities (CVE-2017-{9218,9219,9220,9221,9222,9223,9253,9254,9255,9256,9257})
Summary: <media-libs/faad2-2.8.8: Multiple vulnerabilities (CVE-2017-{9218,9219,9220,9...
Status: RESOLVED FIXED
Alias: CVE-2017-9218, CVE-2017-9219, CVE-2017-9220, CVE-2017-9221, CVE-2017-9222, CVE-2017-9223, CVE-2017-9253, CVE-2017-9254, CVE-2017-9255, CVE-2017-9256, CVE-2017-9257
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL:
Whiteboard: B3 [noglsa cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2017-10-19 17:07 UTC by GLSAMaker/CVETool Bot
Modified: 2018-11-25 01:20 UTC (History)
1 user (show)

See Also:
Package list:
media-libs/faad2-2.8.8
Runtime testing required: ---
stable-bot: sanity-check+


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description GLSAMaker/CVETool Bot gentoo-dev 2017-10-19 17:07:19 UTC
CVE-2017-9257 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9257):
  The mp4ff_read_ctts function in common/mp4ff/mp4atom.c in Freeware Advanced
  Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of
  service (large loop and CPU consumption) via a crafted mp4 file.

CVE-2017-9256 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9256):
  The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Advanced
  Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of
  service (large loop and CPU consumption) via a crafted mp4 file.

CVE-2017-9255 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9255):
  The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Advanced
  Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of
  service (large loop and CPU consumption) via a crafted mp4 file.

CVE-2017-9254 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9254):
  The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Advanced
  Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of
  service (large loop and CPU consumption) via a crafted mp4 file.

CVE-2017-9253 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9253):
  The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Advanced
  Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of
  service (large loop and CPU consumption) via a crafted mp4 file.

CVE-2017-9223 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9223):
  The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Advanced
  Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of
  service (invalid memory read and application crash) via a crafted mp4 file.

CVE-2017-9222 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9222):
  The mp4ff_parse_tag function in common/mp4ff/mp4meta.c in Freeware Advanced
  Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of
  service (infinite loop and CPU consumption) via a crafted mp4 file.

CVE-2017-9221 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9221):
  The mp4ff_read_mdhd function in common/mp4ff/mp4atom.c in Freeware Advanced
  Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of
  service (invalid memory read and application crash) via a crafted mp4 file.

CVE-2017-9220 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9220):
  The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Advanced
  Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of
  service (memory allocation error) via a crafted mp4 file.

CVE-2017-9219 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9219):
  The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Advanced
  Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of
  service (memory allocation error and application crash) via a crafted mp4
  file.

CVE-2017-9218 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9218):
  The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Advanced
  Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of
  service (invalid memory read and application crash) via a crafted mp4 file.


@Maintainers could you please confirm if 2.7-r3 is vulnerable? or shoud we stabilize 2.8.5?

Thank you
Comment 1 Aaron Bauman Gentoo Infrastructure gentoo-dev Security 2018-03-25 17:34:44 UTC
A fix needs to be identified and a proper fixed version in the tree before any stable calls are made.
Comment 2 Andreas Sturmlechner gentoo-dev 2018-09-18 09:41:57 UTC
oh well...
Comment 3 Matt Turner gentoo-dev 2018-09-18 17:16:06 UTC
ppc/ppc64 stable
Comment 4 Sergei Trofimovich gentoo-dev 2018-09-19 08:56:53 UTC
ia64 stable
Comment 5 Rolf Eike Beer 2018-09-19 16:18:55 UTC
sparc done.
Comment 6 Thomas Deutschmann gentoo-dev Security 2018-09-19 17:36:03 UTC
x86 stable
Comment 7 Agostino Sarubbo gentoo-dev 2018-09-21 07:41:55 UTC
amd64 stable
Comment 8 Sergei Trofimovich gentoo-dev 2018-09-22 11:41:14 UTC
hppa stable
Comment 9 Markus Meier gentoo-dev 2018-09-24 18:13:13 UTC
arm stable
Comment 10 Tobias Klausmann gentoo-dev 2018-10-02 10:59:34 UTC
Stable on alpha.
Comment 11 Larry the Git Cow gentoo-dev 2018-10-02 12:43:33 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b3b39d03ad6c4e35d6c4d7a02397804d564b08a8

commit b3b39d03ad6c4e35d6c4d7a02397804d564b08a8
Author:     Andreas Sturmlechner <asturm@gentoo.org>
AuthorDate: 2018-10-02 12:42:48 +0000
Commit:     Andreas Sturmlechner <asturm@gentoo.org>
CommitDate: 2018-10-02 12:42:48 +0000

    media-libs/faad2: Security cleanup
    
    Bug: https://bugs.gentoo.org/634798
    Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>
    Package-Manager: Portage-2.3.50, Repoman-2.3.10

 media-libs/faad2/Manifest                          |  2 -
 media-libs/faad2/faad2-2.7-r3.ebuild               | 48 --------------------
 media-libs/faad2/faad2-2.8.6.ebuild                | 52 ----------------------
 ...d2-2.7-libmp4ff-install-mp4ff_int_types_h.patch | 13 ------
 .../files/faad2-2.7-libmp4ff-shared-lib.patch      | 29 ------------
 media-libs/faad2/files/faad2-2.7-man1_MANS.patch   | 10 -----
 6 files changed, 154 deletions(-)