Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 711272 (CVE-2019-15133) - <media-libs/giflib-5.2.1-r1: divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c (CVE-2019-15133)
Summary: <media-libs/giflib-5.2.1-r1: divide-by-zero exception in the decoder function...
Status: RESOLVED FIXED
Alias: CVE-2019-15133
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL: https://bugs.chromium.org/p/oss-fuzz/...
Whiteboard: B3 [noglsa cve]
Keywords:
: 707326 (view as bug list)
Depends on: 711908
Blocks:
  Show dependency tree
 
Reported: 2020-03-02 01:54 UTC by Sam James
Modified: 2020-06-18 02:32 UTC (History)
2 users (show)

See Also:
Package list:
media-libs/giflib-5.2.1-r1
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Sam James gentoo-dev Security 2020-03-02 01:54:16 UTC
Description:
"In GIFLIB before 2019-02-16, a malformed GIF file triggers a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height field of the ImageSize data structure is equal to zero."

Patch: https://sourceforge.net/p/giflib/code/ci/799eb6a3af8a3dd81e2429bf11a72a57e541f908/ (see URL)

Affected versions:
- <5.1.8
Comment 1 Andreas Sturmlechner gentoo-dev 2020-03-08 21:23:41 UTC
*** Bug 707326 has been marked as a duplicate of this bug. ***
Comment 2 Andreas Sturmlechner gentoo-dev 2020-03-08 21:25:54 UTC
Arches please stabilise.
Comment 3 Thomas Deutschmann gentoo-dev Security 2020-03-09 01:59:16 UTC
x86 stable
Comment 4 Agostino Sarubbo gentoo-dev 2020-03-09 10:24:01 UTC
sparc stable
Comment 5 Agostino Sarubbo gentoo-dev 2020-03-09 10:49:24 UTC
arm stable
Comment 6 Agostino Sarubbo gentoo-dev 2020-03-09 11:17:55 UTC
ppc stable
Comment 7 Agostino Sarubbo gentoo-dev 2020-03-09 12:40:46 UTC
amd64 stable
Comment 8 Agostino Sarubbo gentoo-dev 2020-03-09 12:42:01 UTC
ia64 stable
Comment 9 Agostino Sarubbo gentoo-dev 2020-03-09 12:43:11 UTC
ppc64 stable
Comment 10 Mart Raudsepp gentoo-dev 2020-03-12 23:07:02 UTC
arm64 stable
Comment 11 Rolf Eike Beer 2020-03-16 17:46:08 UTC
hppa stable
Comment 12 Sam James gentoo-dev Security 2020-03-18 20:30:48 UTC
Thanks arches.

@maintainer(s), please cleanup the vulnerable ebuild(s).
Comment 13 Andreas Sturmlechner gentoo-dev 2020-03-18 20:35:37 UTC
Unfortunately cleanup is blocked by dotnet.
Comment 14 Larry the Git Cow gentoo-dev 2020-03-25 20:55:20 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d5eac496a50b7aeb6e2d156658348ac8cfb505bf

commit d5eac496a50b7aeb6e2d156658348ac8cfb505bf
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2020-03-25 20:55:03 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2020-03-25 20:55:13 +0000

    media-libs/giflib: security cleanup (bug #711272)
    
    Bug: https://bugs.gentoo.org/711272
    Package-Manager: Portage-2.3.94, Repoman-2.3.21
    Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>

 media-libs/giflib/Manifest            |  1 -
 media-libs/giflib/giflib-5.1.4.ebuild | 65 -----------------------------------
 2 files changed, 66 deletions(-)

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f63de241ae62ab576ec6c388d7e00879b59c51e8

commit f63de241ae62ab576ec6c388d7e00879b59c51e8
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2020-03-25 20:54:21 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2020-03-25 20:55:12 +0000

    media-libs/giflib: mark s390 stable (bug #711272)
    
    Bug: https://bugs.gentoo.org/711272
    Package-Manager: Portage-2.3.94, Repoman-2.3.21
    Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>

 media-libs/giflib/giflib-5.2.1-r1.ebuild | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
Comment 15 Thomas Deutschmann gentoo-dev Security 2020-03-25 20:55:58 UTC
GLSA Vote: No

Repository is clean, all done!
Comment 16 Larry the Git Cow gentoo-dev 2020-03-25 21:30:22 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1fa78949e3a48ee281bb462f705debf31b34ac80

commit 1fa78949e3a48ee281bb462f705debf31b34ac80
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2020-03-25 21:29:04 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2020-03-25 21:30:10 +0000

    Revert "media-libs/giflib: security cleanup (bug #711272)"
    
    This reverts commit d5eac496a50b7aeb6e2d156658348ac8cfb505bf.
    
    Bug: https://bugs.gentoo.org/711272
    Bug: https://bugs.gentoo.org/711908
    Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>

 media-libs/giflib/Manifest            |  1 +
 media-libs/giflib/giflib-5.1.4.ebuild | 65 +++++++++++++++++++++++++++++++++++
 2 files changed, 66 insertions(+)
Comment 17 Thomas Deutschmann gentoo-dev Security 2020-03-25 21:30:53 UTC
Re-opening for cleanup :(
Comment 18 Yury German Gentoo Infrastructure gentoo-dev Security 2020-04-06 00:17:10 UTC
Reminder - Maintainer(s), please drop the vulnerable version(s).
Comment 19 Andreas Sturmlechner gentoo-dev 2020-04-06 05:51:03 UTC
(In reply to Andreas Sturmlechner from comment #13)
> Unfortunately cleanup is blocked by dotnet.
Comment 20 NATTkA bot gentoo-dev 2020-04-06 11:25:08 UTC
Resetting sanity check; keywords are not fully specified and arches are not CC-ed.
Comment 21 Larry the Git Cow gentoo-dev 2020-05-16 21:28:03 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4abb3090b49ca462949138c0aeed3387a1473f56

commit 4abb3090b49ca462949138c0aeed3387a1473f56
Author:     David Seifert <soap@gentoo.org>
AuthorDate: 2020-05-16 21:27:09 +0000
Commit:     David Seifert <soap@gentoo.org>
CommitDate: 2020-05-16 21:27:09 +0000

    media-libs/giflib: Remove old
    
    Bug: https://bugs.gentoo.org/711272
    Closes: https://github.com/gentoo/gentoo/pull/15835
    Package-Manager: Portage-2.3.99, Repoman-2.3.22
    Signed-off-by: David Seifert <soap@gentoo.org>

 media-libs/giflib/Manifest            |  1 -
 media-libs/giflib/giflib-5.1.4.ebuild | 65 -----------------------------------
 2 files changed, 66 deletions(-)
Comment 22 Sam James gentoo-dev Security 2020-06-18 02:32:59 UTC
Thanks!