oss-sec mailing list archives
Re: CVE request: unace
From: cve-assign () mitre org
Date: Mon, 23 Feb 2015 22:30:17 -0500 (EST)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775003 unace crashes when trying to test integrity of the attached file: gdb says it's an integer overflow, followed by buffer overflow: #1 0x0000000000401558 in read_header (print_err=0) at unace.c:171 171 memcpy(mhead.AV, tp, rd-(USHORT)(tp-readbuf)); (gdb) print rd-(USHORT)(tp-readbuf) $1 = -27 This bug was found using American fuzzy lop: https://packages.debian.org/experimental/afl
Use CVE-2015-2063. - -- CVE assignment team, MITRE CVE Numbering Authority M/S M300 202 Burlington Road, Bedford, MA 01730 USA [ PGP key available through http://cve.mitre.org/cve/request_id.html ] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (SunOS) iQEcBAEBAgAGBQJU6++4AAoJEKllVAevmvmsgwAIAIstNrDKMbTvgu6KWL4u+frE /glmgt4yTfcPiKbz9i54lmPTNva6xetiVxLT5A3s//u/AuWZEgMUArvEyK/sRTEf or9fwx8hW45j+z05ShzxXxNO92iXLZ9rCHV7ztlijapbiIQvyDW0TgRJ7m8VaEMq ak7zvfZCzDWdC/jhb2oLl2dfSDNlqRSJtq8YFNaz0pmBBsC77hwM/vqxbdVk4ite tu7QQ7nPPYHaVywOUXobZIhNRp+QogXAyQMGar/n5lgGFZPMDn/ItC4m4lBqFEA7 jcosECnjPuj7JS7kizBUBz0K3Kc8DegyJjtLwOU2HQtnUbHHGsGbWoOw2L+IXn4= =lNTs -----END PGP SIGNATURE-----
Current thread:
- CVE request: unace Moritz Muehlenhoff (Feb 23)
- Re: CVE request: unace cve-assign (Feb 23)