Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 766336 (CVE-2021-3185) - <media-libs/gst-plugins-bad-1.16.3: h264parse stack overflow RCE (CVE-2021-3185)
Summary: <media-libs/gst-plugins-bad-1.16.3: h264parse stack overflow RCE (CVE-2021-3185)
Status: RESOLVED FIXED
Alias: CVE-2021-3185
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal major (vote)
Assignee: Gentoo Security
URL: https://marc.info/?l=oss-security&m=1...
Whiteboard: A2 [glsa+ cve]
Keywords:
: 767187 (view as bug list)
Depends on:
Blocks: 765163
  Show dependency tree
 
Reported: 2021-01-21 00:04 UTC by Hank Leininger
Modified: 2022-08-14 21:49 UTC (History)
4 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Hank Leininger 2021-01-21 00:04:33 UTC
"During a source code audit, Theori discovered a stack buffer overflow
in the h264parse module which is part of gstreamer-plugins-bad 1.x.
The vulnerable code path can be triggered when gstreamer parses any
attacker-controlled H.264 content. This flaw could lead to remote code
execution."

1.16.3 includes the fix.
Comment 1 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2021-01-21 00:06:41 UTC
Thanks for the report, beat me to it.

(We use fixed versions within Gentoo in the summary.)
Comment 2 Hank Leininger 2021-01-21 00:47:34 UTC
(In reply to Sam James from comment #1)
> Thanks for the report, beat me to it.
> 
> (We use fixed versions within Gentoo in the summary.)

Thanks! Doh, I meant to <, not <=. 1.16.3 is indeed fixed.
Comment 3 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2021-01-25 20:10:32 UTC
*** Bug 767187 has been marked as a duplicate of this bug. ***
Comment 4 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2021-02-14 02:09:14 UTC
ppc64 done
Comment 5 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2021-02-14 02:12:06 UTC
x86 done
Comment 6 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2021-02-14 14:50:21 UTC
amd64 done
Comment 7 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2021-02-15 04:03:09 UTC
ppc done
Comment 8 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2021-02-17 13:53:15 UTC
arm64 done
Comment 9 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2021-02-18 08:45:39 UTC
arm done

all arches done
Comment 10 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2021-02-19 01:33:35 UTC
Please cleanup
Comment 11 NATTkA bot gentoo-dev 2021-07-29 17:24:22 UTC Comment hidden (obsolete)
Comment 12 NATTkA bot gentoo-dev 2021-07-29 17:32:51 UTC Comment hidden (obsolete)
Comment 13 NATTkA bot gentoo-dev 2021-07-29 17:40:44 UTC Comment hidden (obsolete)
Comment 14 NATTkA bot gentoo-dev 2021-07-29 17:48:54 UTC Comment hidden (obsolete)
Comment 15 NATTkA bot gentoo-dev 2021-07-29 18:04:49 UTC Comment hidden (obsolete)
Comment 16 NATTkA bot gentoo-dev 2021-07-29 18:13:07 UTC
Package list is empty or all packages have requested keywords.
Comment 17 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-08-14 05:23:27 UTC
GLSA request filed
Comment 18 Larry the Git Cow gentoo-dev 2022-08-14 21:48:40 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/data/glsa.git/commit/?id=f69203b9608d0db5bda6ce4050bf90de5119c0f8

commit f69203b9608d0db5bda6ce4050bf90de5119c0f8
Author:     GLSAMaker <glsamaker@gentoo.org>
AuthorDate: 2022-08-14 21:47:49 +0000
Commit:     Sam James <sam@gentoo.org>
CommitDate: 2022-08-14 21:48:21 +0000

    [ GLSA 202208-31 ] GStreamer, GStreamer Plugins: Multiple Vulnerabilities
    
    Bug: https://bugs.gentoo.org/765163
    Bug: https://bugs.gentoo.org/766336
    Bug: https://bugs.gentoo.org/785652
    Bug: https://bugs.gentoo.org/785655
    Bug: https://bugs.gentoo.org/785658
    Bug: https://bugs.gentoo.org/785661
    Bug: https://bugs.gentoo.org/835368
    Bug: https://bugs.gentoo.org/843770
    Signed-off-by: GLSAMaker <glsamaker@gentoo.org>
    Signed-off-by: Sam James <sam@gentoo.org>

 glsa-202208-31.xml | 111 +++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 111 insertions(+)
Comment 19 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2022-08-14 21:49:38 UTC
GLSA done, all done.