Bug 30365

Summary: epiphany new security issue CVE-2022-29536
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: QA Team <qa-bugs>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: major    
Priority: Normal CC: andrewsfarm, brtians1, davidwhodgins, nicolas.salguero, sysadmin-bugs
Version: 8Keywords: advisory, validated_update
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard: MGA8-64-OK
Source RPM: epiphany-3.38.2-1.1.mga8.src.rpm CVE: CVE-2022-29536
Status comment:

Description David Walser 2022-05-02 22:50:20 CEST 
Fedora has issued an advisory on April 30:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/GLLDMY4JYDZTMZSCPSY23K5YW3SQYUR6/

The issue is fixed upstream in 41.4 and 42.2.
David Walser 2022-05-02 22:50:41 CEST

Status comment: (none) => Patch available from Fedora

Comment 1 David Walser 2022-08-12 18:38:26 CEST 
Ubuntu has issued an advisory for this on August 10:
https://ubuntu.com/security/notices/USN-5561-1
Comment 2 David Walser 2022-08-17 18:39:02 CEST 
Debian has issued an advisory for this on August 16:
https://www.debian.org/security/2022/dsa-5208
Comment 3 Nicolas Salguero 2022-10-19 15:59:12 CEST 
Suggested advisory:
========================

The updated package fixes a security vulnerability:

In GNOME Epiphany before 41.4 and 42.x before 42.2, an HTML document can trigger a client buffer overflow (in ephy_string_shorten in the UI process) via a long page title. The issue occurs because the number of bytes for a UTF-8 ellipsis character is not properly considered. (CVE-2022-29536)

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29536
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/GLLDMY4JYDZTMZSCPSY23K5YW3SQYUR6/
https://ubuntu.com/security/notices/USN-5561-1
https://www.debian.org/security/2022/dsa-5208
========================

Updated package in core/updates_testing:
========================
epiphany-3.38.2-1.2.mga8

from SRPM:
epiphany-3.38.2-1.2.mga8.src.rpm

CVE: (none) => CVE-2022-29536
Status comment: Patch available from Fedora => (none)
CC: (none) => nicolas.salguero
Assignee: gnome => qa-bugs
Status: NEW => ASSIGNED

Comment 4 Brian Rockwell 2022-10-22 16:20:25 CEST 
GNOME on Vbox

installed.

Visited a few web-sites, seems to work as expected.

CC: (none) => brtians1

Brian Rockwell 2022-10-22 16:20:44 CEST

Whiteboard: (none) => MGA8-64-OK

Comment 5 Thomas Andrews 2022-10-23 01:19:04 CEST 
Validating. Advisory in Comment 3.

Keywords: (none) => validated_update
CC: (none) => andrewsfarm, sysadmin-bugs

Dave Hodgins 2022-10-23 23:24:50 CEST

Keywords: (none) => advisory
CC: (none) => davidwhodgins

Comment 6 Mageia Robot 2022-10-24 00:49:44 CEST 
An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2022-0382.html

Status: ASSIGNED => RESOLVED
Resolution: (none) => FIXED