Bug 26515

Summary: re2c possible new heap overflow security issue (CVE-2020-11958)
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: David GEIGER <geiger.david68210>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: normal    
Priority: Normal    
Version: Cauldron   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: re2c-1.2.1-2.mga8.src.rpm CVE:
Status comment:

Description David Walser 2020-04-21 00:31:26 CEST 
A security issue fixed upstream in re2c has been announced on April 19:
https://www.openwall.com/lists/oss-security/2020/04/19/1

The commit that fixed the issue is linked in the message above.

It says 1.3 is affected so 1.2.1 might be as well.  1.1.1 (Mageia 7) may also be affected.

A CVE has been requested.
David Walser 2020-04-21 00:31:50 CEST

Assignee: bugsquad => geiger.david68210
Whiteboard: (none) => MGA7TOO
Status comment: (none) => Patch available from upstream

Comment 1 David GEIGER 2020-04-21 08:52:08 CEST 
Fixed for Cauldron!

mga7 with release 1.1.1 is not affected, this part of patched code doesn't exist.
Comment 2 David Walser 2020-04-21 11:47:11 CEST 
Fixed in re2c-1.2.1-3.mga8.

Status: NEW => RESOLVED
Status comment: Patch available from upstream => (none)
Resolution: (none) => FIXED
Whiteboard: MGA7TOO => (none)

Comment 3 David Walser 2020-04-21 11:49:18 CEST 
CVE-2020-11958 has been assigned:
https://www.openwall.com/lists/oss-security/2020/04/21/1

Summary: re2c possible new heap overflow security issue => re2c possible new heap overflow security issue (CVE-2020-11958)

Comment 4 David Walser 2020-04-23 20:34:46 CEST 
Ubuntu has issued an advisory for this on April 22:
https://usn.ubuntu.com/4338-1/