797247 – (CVE-2018-10195) <net-dialup/lrzsz-0.12.20-r9: information leak

Bug 797247 (CVE-2018-10195) - <net-dialup/lrzsz-0.12.20-r9: information leak

Summary: <net-dialup/lrzsz-0.12.20-r9: information leak

Status:	CONFIRMED

Alias:	CVE-2018-10195

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal minor (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:	B4 [glsa?]
Keywords:	PullRequest

Depends on:	937218
Blocks:
	Show dependency tree

Reported:	2021-06-21 02:28 UTC by John Helmert III
Modified:	2024-08-14 06:27 UTC (History)
CC List:	1 user (show)

See Also:	https://github.com/gentoo/gentoo/pull/37927
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description John Helmert III archtester

2021-06-21 02:28:45 UTC

CVE-2018-10195 (https://bugzilla.redhat.com/show_bug.cgi?id=1572058):

lrzsz before version 0.12.21~rc can leak information to the receiving side due to an incorrect length check in the function zsdata that causes a size_t to wrap around.


Looks like Fedora (et al) has a patch: https://src.fedoraproject.org/cgit/rpms/lrzsz.git/tree/lrzsz-0.12.20.patch

Comment 1 NATTkA bot gentoo-dev

2021-07-29 17:21:37 UTC Comment hidden (obsolete)

Package list is empty or all packages have requested keywords.

Comment 2 NATTkA bot gentoo-dev

2021-07-29 17:29:46 UTC Comment hidden (obsolete)

Package list is empty or all packages have requested keywords.

Comment 3 NATTkA bot gentoo-dev

2021-07-29 17:37:44 UTC Comment hidden (obsolete)

Package list is empty or all packages have requested keywords.

Comment 4 NATTkA bot gentoo-dev

2021-07-29 17:45:49 UTC Comment hidden (obsolete)

Package list is empty or all packages have requested keywords.

Comment 5 NATTkA bot gentoo-dev

2021-07-29 17:53:53 UTC Comment hidden (obsolete)

Package list is empty or all packages have requested keywords.

Comment 6 NATTkA bot gentoo-dev

2021-07-29 18:01:47 UTC Comment hidden (obsolete)

Package list is empty or all packages have requested keywords.

Comment 7 NATTkA bot gentoo-dev

2021-07-29 18:10:08 UTC

Package list is empty or all packages have requested keywords.

Comment 8 Larry the Git Cow gentoo-dev

2024-08-03 06:02:12 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=9d72a7601ef530f753d2fa7d6ad7c0d3dddb1f93

commit 9d72a7601ef530f753d2fa7d6ad7c0d3dddb1f93
Author:     Christopher Fore <csfore@posteo.net>
AuthorDate: 2024-08-02 15:42:39 +0000
Commit:     Viorel Munteanu <ceamac@gentoo.org>
CommitDate: 2024-08-03 06:02:01 +0000

    net-dialup/lrzsz: Fix information leak
    
    - Patch taken from Fedora (check patch file for link)
    - Seems to still be affected by https://bugs.gentoo.org/836585
      - Tests pass otherwise ("All tests OK.")
    
    Bug: https://bugs.gentoo.org/797247
    Signed-off-by: Christopher Fore <csfore@posteo.net>
    Closes: https://github.com/gentoo/gentoo/pull/37927
    Signed-off-by: Viorel Munteanu <ceamac@gentoo.org>

 .../files/lrzsz-0.12.20-fix-integer-overflow.patch | 23 +++++++
 net-dialup/lrzsz/lrzsz-0.12.20-r9.ebuild           | 76 ++++++++++++++++++++++
 2 files changed, 99 insertions(+)

Comment 9 Larry the Git Cow gentoo-dev

2024-08-14 04:47:39 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b1dd578a88a4e22e3492df54928aec7683f11280

commit b1dd578a88a4e22e3492df54928aec7683f11280
Author:     Viorel Munteanu <ceamac@gentoo.org>
AuthorDate: 2024-08-14 04:46:27 +0000
Commit:     Viorel Munteanu <ceamac@gentoo.org>
CommitDate: 2024-08-14 04:46:27 +0000

    net-dialup/lrzsz: drop 0.12.20-r8
    
    Bug: https://bugs.gentoo.org/797247
    Signed-off-by: Viorel Munteanu <ceamac@gentoo.org>

 net-dialup/lrzsz/lrzsz-0.12.20-r8.ebuild | 75 --------------------------------
 1 file changed, 75 deletions(-)