openSUSE has issued an advisory on July 19: https://lists.opensuse.org/opensuse-updates/2017-07/msg00076.html Mageia 5 and Mageia 6 are also affected.
Whiteboard: (none) => MGA6TOO, MGA5TOO
Assigning to the registered maintainer.
CC: (none) => marja11Assignee: bugsquad => mageia
Patched packages uploaded for Mageia 5, Mageia 6, and Cauldron. Advisory: ======================== Updated catdoc package fixes security vulnerability: Attackers may have used specially crafted files to cause a denial of service through a heap-based buffer under-flow and application crash, or have unspecified other impact (CVE-2017-11110). References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11110 https://lists.opensuse.org/opensuse-updates/2017-07/msg00076.html ======================== Updated packages in core/updates_testing: ======================== catdoc-0.95-1.1.mga5 catdoc-0.95-1.1.mga6 from SRPMS: catdoc-0.95-1.1.mga5.src.rpm catdoc-0.95-1.1.mga6.src.rpm
Whiteboard: MGA6TOO, MGA5TOO => MGA5TOOVersion: Cauldron => 6Assignee: mageia => qa-bugs
Testing complete mga6 64 $ catdoc <some .doc file> .. Text of the doc file ..
Whiteboard: MGA5TOO => MGA5TOO has_procedure mga6-64-ok
Adding this for completeness. x86_64 Mate Found a POC for CVE-2017-11110. Before the update it triggered a stack dump and aborted. Afterwards: $ catdoc heap_overflow sectorSize < 4 not supported Broken OLE file. Try using -b switch. Using the -b switch produces a load of indecipherable text.
CC: (none) => tarazed25
mga5 x86_64 PoC file for CVE-2017-11110 downloaded from https://bugzilla.redhat.com/show_bug.cgi?id=1468471 Before update: $ catdoc heap_overflow *** Error in `catdoc': munmap_chunk(): invalid pointer: 0x0000000001118110 *** <...backtrace...> Aborted After updating: $ catdoc heap_overflow sectorSize < 4 not supported Broken OLE file. Try using -b switch $ catdoc whatever.doc Output clear text.
Whiteboard: MGA5TOO has_procedure mga6-64-ok => MGA5TOO has_procedure mga6-64-ok MGA5-64-OK
Keywords: (none) => validated_updateCC: (none) => sysadmin-bugs
Whiteboard: MGA5TOO has_procedure mga6-64-ok MGA5-64-OK => advisory MGA5TOO has_procedure mga6-64-ok MGA5-64-OK
An update for this issue has been pushed to the Mageia Updates repository. http://advisories.mageia.org/MGASA-2017-0240.html
Status: NEW => RESOLVEDResolution: (none) => FIXED