Bug 25942

Summary: pdfresurrect new security issues CVE-2019-14267 and CVE-2019-14934
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: QA Team <qa-bugs>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: andrewsfarm, brtians1, geiger.david68210, sysadmin-bugs, tmb
Version: 7Keywords: advisory, validated_update
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard: MGA7-64-OK
Source RPM: pdfresurrect-0.15-1.mga7.src.rpm CVE:
Status comment:

Description David Walser 2019-12-23 23:27:08 CET 
Fedora has issued an advisory on September 6:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/LXN6W5QTNQJ2LFDCQWKYSMMZ3NPUWP3U/

The issues are fixed upstream in 0.18.
Comment 1 David GEIGER 2019-12-24 06:54:47 CET 
Done!
Comment 2 David Walser 2019-12-24 07:05:07 CET 
Advisory:
========================

Updated pdfresurrect package fixes security vulnerabilities:

A vulnerability was found in PDFResurrect 0.15 has a buffer overflow via a
crafted PDF file because data associated with startxref and %%EOF is mishandled
(CVE-2019-14267).

An issue was discovered in PDFResurrect before 0.18. pdf_load_pages_kids in
pdf.c doesn't validate a certain size value, which leads to a malloc failure
and out-of-bounds write (CVE-2019-14934).

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14267
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14934
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/LXN6W5QTNQJ2LFDCQWKYSMMZ3NPUWP3U/
========================

Updated packages in core/updates_testing:
========================
pdfresurrect-0.18-1.mga7

from pdfresurrect-0.18-1.mga7.src.rpm

Assignee: geiger.david68210 => qa-bugs
CC: (none) => geiger.david68210

Comment 3 Brian Rockwell 2019-12-27 23:09:34 CET 
Installed it

Ran some tests and it seems to be working as designed.

I was able to pull pdf information from several different pdf's.

CC: (none) => brtians1
Whiteboard: (none) => MGA7-64-OK

Comment 4 Thomas Andrews 2019-12-29 19:30:02 CET 
Validating. Advisory in Comment 2.

Keywords: (none) => validated_update
CC: (none) => andrewsfarm, sysadmin-bugs

Thomas Backlund 2019-12-31 16:52:06 CET

CC: (none) => tmb
Keywords: (none) => advisory

Comment 5 Mageia Robot 2019-12-31 17:52:46 CET 
An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2019-0419.html

Resolution: (none) => FIXED
Status: NEW => RESOLVED