Bug 17445

Summary: rtmpdump new security issues fixed upstream
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: QA Team <qa-bugs>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: sysadmin-bugs, tarazed25, tmb
Version: 5Keywords: validated_update
Target Milestone: ---   
Hardware: i586   
OS: Linux   
URL: http://lwn.net/Vulnerabilities/670061/
Whiteboard: MGA5-32-OK MGA5-64-OK advisory
Source RPM: rtmpdump-2.4-0.git20140215.2.mga5.src.rpm CVE:
Status comment:

Description David Walser 2016-01-04 22:23:04 CET 
Several security issues fixed upstream in rtmpdump were announced on December 30:
http://openwall.com/lists/oss-security/2015/12/30/1

I have updated it to a git snapshot from 20160101.

Advisory:
========================

Updated rtmpdump packages fix security vulnerabilities:

The rtmpdump package has been updated to the latest upstream code as of
January 1, 2016, fixing several security issues.

References:
http://openwall.com/lists/oss-security/2015/12/30/1
========================

Updated packages in core/updates_testing:
========================
rtmpdump-2.4-0.git20160101.1.mga5
librtmp1-2.4-0.git20160101.1.mga5
librtmp-devel-2.4-0.git20160101.1.mga5

from rtmpdump-2.4-0.git20160101.1.mga5.src.rpm

Reproducible: 

Steps to Reproduce:
Comment 1 Len Lawrence 2016-01-07 23:48:38 CET 
mga5  i586 vbox  Mate

Updated rtmpdump and used get_iplayer to run rtmpdump from the command line.

[lcl@cursa ~]$ get_iplayer --modes=best --get 50 --force
[lcl@cursa ~]$ ps aux | grep rtmpdump
lcl       3040  1.7  0.1   2968  2276 pts/1    S+   22:32   0:00 rtmpdump --port 1935 --protocol 0 --playpath mp4:secure/1500kbps/modav/p03czmzs_b06x7cnb_1451831459522.mp4?auth=daEdxaKdzdibsbkdLbDc7dhaidOa0cqdsaY-bwJUD9-bWG-EnrGFqEoNCnHuxL&aifp=v001&slist=secure/480kbps/modav/p03czmzs_b06x7cnb_1451831463873.mp4;secure/1500kbps/modav/p03czmzs_b06x7cnb_1451831459522.mp4;secure/800kbps/modav/p03czmzs_b06x7cnb_1451831459101.mp4 --host vod-rtmp-uk-live.edgesuite.net --swfUrl http://emp.bbci.co.uk/emp/SMPf/1.11.16/StandardMediaPlayerChromelessFlash.swf --tcUrl rtmp://vod-rtmp-uk-live.edgesuite.net:80/ondemand?_fcs_vhost=vod-rtmp-uk-live.edgesuite.net&undefined&auth=daEdxaKdzdibsbkdLbDc7dhaidOa0cqdsaY-bwJUD9-bWG-EnrGFqEoNCnHuxL&aifp=v001&slist=secure/480kbps/modav/p03czmzs_b06x7cnb_1451831463873.mp4;secure/1500kbps/modav/p03czmzs_b06x7cnb_1451831459522.mp4;secure/800kbps/modav/p03czmzs_b06x7cnb_1451831459101.mp4 --app ondemand?_fcs_vhost=vod-rtmp-uk-live.edgesuite.net&undefined&auth=daEdxaKdzdibsbkdLbDc7dhaidOa0cqdsaY-bwJUD9-bWG-EnrGFqEoNCnHuxL&aifp=v001&slist=secure/480kbps/modav/p03czmzs_b06x7cnb_1451831463873.mp4;secure/1500kbps/modav/p03czmzs_b06x7cnb_1451831459522.mp4;secure/800kbps/modav/p03czmzs_b06x7cnb_1451831459101.mp4 --pageUrl http://www.bbc.co.uk/iplayer/episode/b06x7cv6 --resume -o /home/lcl/America_this_Week_-_03_01_2016_b06x7cv6_default.partial.mp4.flv --timeout 10

This downloaded an MP4 file which played fine in vlc which is a good enough test (?).

CC: (none) => tarazed25

Len Lawrence 2016-01-07 23:49:23 CET

Whiteboard: (none) => MGA5-32-OK

Comment 2 Len Lawrence 2016-01-08 00:24:49 CET 
mga5  x86_64  Mate

Installed the updates from Core/Updates Testing and ran get_iplayer to download an episode of Silent Witness.  That played fine in vlc.
Len Lawrence 2016-01-08 00:25:24 CET

Whiteboard: MGA5-32-OK => MGA5-32-OK MGA5_64-OK

Len Lawrence 2016-01-08 01:29:51 CET

Keywords: (none) => validated_update
CC: (none) => sysadmin-bugs

Len Lawrence 2016-01-08 01:30:53 CET

Whiteboard: MGA5-32-OK MGA5_64-OK => MGA5-32-OK MGA5-64-OK

RĂ©mi Verschelde 2016-01-08 07:46:37 CET

Whiteboard: MGA5-32-OK MGA5-64-OK => MGA5-32-OK MGA5-64-OK advisory

Comment 3 Mageia Robot 2016-01-09 18:18:11 CET 
An update for this issue has been pushed to Mageia Updates repository.

http://advisories.mageia.org/MGASA-2016-0004.html

Status: NEW => RESOLVED
Resolution: (none) => FIXED

Comment 4 David Walser 2016-01-18 17:35:10 CET 
I have just been informed that this package exists in tainted also.  Please push that one as well.

Resolution: FIXED => (none)
Status: RESOLVED => REOPENED

Comment 5 Thomas Backlund 2016-01-20 19:04:54 CET 
Tainted packages pushed.

Status: REOPENED => RESOLVED
CC: (none) => tmb
Resolution: (none) => FIXED

Comment 6 David Walser 2017-05-10 12:20:01 CEST 
This update also fixed CVE-2015-8270 CVE-2015-8271 CVE-2015-8272 from some other upstream commits in December 2015:
https://www.ubuntu.com/usn/usn-3283-1/