An advisory has been issued today (May 11): http://www.ocert.org/advisories/ocert-2015-006.html We have another monster libraw bug like Bug 11149. I have committed the libraw 0.16.1 update in Cauldron and asked for a freeze push. Reproducible: Steps to Reproduce:
CC: (none) => anssi.hannula, fundawang, jani.valimaa, rverschelde, shlomifWhiteboard: (none) => MGA5TOO, MGA4TOO
Just for future reference, libraw-0.16.1 is pushed in mga5/Cauldron. Plenty more work to go :o)
I applied a patch to it in dcraw-9.22-4.mga5.src.rpm but it still needs to be pushed.
Blocks: (none) => 15915
Blocks: 15915 => (none)Depends on: (none) => 15915
dcraw-9.22-4.mga5 and darktable-1.6.6-1.mga5 uploaded for Cauldron.
CVE-2015-3885 has been assigned: http://openwall.com/lists/oss-security/2015/05/12/8
Summary: libraw, dcraw, ufraw, rawtherapee, kodi, darktable new integer overflow security issue => libraw, dcraw, ufraw, rawtherapee, kodi, darktable new integer overflow security issue (CVE-2015-3885)
Patches checked into Mageia 4 and Cauldron SVN for ufraw and rawtherapee. Freeze pushes requested.
Patch checked into Mageia 4 SVN for libraw. Everything is at least patched in SVN and freeze push requested except for kodi.
ufraw-0.19.2-10.mga5 and rawtherapee-4.1-4.mga5 uploaded for Cauldron.
Depends on: (none) => 15925
Depends on: (none) => 15926
Depends on: (none) => 15927
Depends on: (none) => 15928
Solved for everything except for xbmc/kodi.
Version: Cauldron => 4Whiteboard: MGA5TOO, MGA4TOO => (none)
I'm going to close the tracker since we have all we need in Bugzilla in the remaining xbmc/kodi bug.
Status: NEW => RESOLVEDResolution: (none) => FIXED
URL: (none) => http://lwn.net/Vulnerabilities/644511/