Bug 17332

Summary: libpng12 new security issue CVE-2015-8540
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: QA Team <qa-bugs>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: brtians1, sysadmin-bugs
Version: 5Keywords: validated_update
Target Milestone: ---   
Hardware: i586   
OS: Linux   
URL: http://lwn.net/Vulnerabilities/668545/
Whiteboard: has_procedure MGA5-32-OK advisory
Source RPM: libpng12-1.2.55-1.mga5.src.rpm CVE:
Status comment:

Description David Walser 2015-12-14 17:32:35 CET 
A CVE has been assigned for an issue in libpng12:
http://openwall.com/lists/oss-security/2015/12/11/1

It will be fixed in 1.2.56, which hasn't been released yet.

Reproducible: 

Steps to Reproduce:
Comment 1 David Walser 2015-12-18 15:26:11 CET 
Updated packages uploaded for Mageia 5 and Cauldron.

libpng12 can be tested using xv.

Advisory:
========================

Updated libpng12 packages fix security vulnerability:

There is a underflow read in png_check_keyword() in pngwutil.c in libpng 1.2.x
before 1.2.56 (CVE-2015-8540).

References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8472
http://openwall.com/lists/oss-security/2015/12/11/1
========================

Updated packages in core/updates_testing:
========================
libpng12_0-1.2.55-1.mga5
libpng12-devel-1.2.55-1.mga5

from libpng12-1.2.56-1.mga5.src.rpm

Assignee: bugsquad => qa-bugs
Whiteboard: (none) => has_procedure

David Walser 2015-12-18 20:24:20 CET

URL: (none) => http://lwn.net/Vulnerabilities/668545/

Comment 2 Brian Rockwell 2015-12-19 13:25:33 CET 
I updated to libpng12_0-1-2.56-1

Loaded png - save png
loaded png - save bmp

This is working as designed.


[root@localhost brian]# urpmi libpng12_0
Package libpng12_0-1.2.56-1.mga5.i586 is already installed


Linux localhost 4.1.13-desktop586-2.mga5 #1 SMP Wed Nov 11 00:50:24 UTC 2015 i686 i686 i686 GNU/Linux

CC: (none) => brtians1
Whiteboard: has_procedure => has_procedure MGA5-32-OK

Comment 3 Brian Rockwell 2015-12-19 13:26:25 CET 
I updated to libpng12_0-1-2.56-1

Loaded png - save png
loaded png - save bmp

This is working as designed.


[root@localhost brian]# urpmi libpng12_0
Package libpng12_0-1.2.56-1.mga5.i586 is already installed


Linux localhost 4.1.13-desktop586-2.mga5 #1 SMP Wed Nov 11 00:50:24 UTC 2015 i686 i686 i686 GNU/Linux
Brian Rockwell 2015-12-19 13:26:47 CET

Keywords: (none) => validated_update
CC: (none) => sysadmin-bugs

RĂ©mi Verschelde 2015-12-28 13:25:53 CET

Whiteboard: has_procedure MGA5-32-OK => has_procedure MGA5-32-OK advisory

Comment 4 Mageia Robot 2015-12-28 20:24:37 CET 
An update for this issue has been pushed to Mageia Updates repository.

http://advisories.mageia.org/MGASA-2015-0489.html

Status: NEW => RESOLVED
Resolution: (none) => FIXED