Bug 26515 - re2c possible new heap overflow security issue (CVE-2020-11958)
Summary: re2c possible new heap overflow security issue (CVE-2020-11958)
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: David GEIGER
QA Contact: Sec team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2020-04-21 00:31 CEST by David Walser
Modified: 2020-04-23 20:34 CEST (History)
0 users

See Also:
Source RPM: re2c-1.2.1-2.mga8.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2020-04-21 00:31:26 CEST 
A security issue fixed upstream in re2c has been announced on April 19:
https://www.openwall.com/lists/oss-security/2020/04/19/1

The commit that fixed the issue is linked in the message above.

It says 1.3 is affected so 1.2.1 might be as well.  1.1.1 (Mageia 7) may also be affected.

A CVE has been requested.
David Walser 2020-04-21 00:31:50 CEST

Assignee: bugsquad => geiger.david68210
Whiteboard: (none) => MGA7TOO
Status comment: (none) => Patch available from upstream

Comment 1 David GEIGER 2020-04-21 08:52:08 CEST 
Fixed for Cauldron!

mga7 with release 1.1.1 is not affected, this part of patched code doesn't exist.
Comment 2 David Walser 2020-04-21 11:47:11 CEST 
Fixed in re2c-1.2.1-3.mga8.

Status: NEW => RESOLVED
Status comment: Patch available from upstream => (none)
Resolution: (none) => FIXED
Whiteboard: MGA7TOO => (none)

Comment 3 David Walser 2020-04-21 11:49:18 CEST 
CVE-2020-11958 has been assigned:
https://www.openwall.com/lists/oss-security/2020/04/21/1

Summary: re2c possible new heap overflow security issue => re2c possible new heap overflow security issue (CVE-2020-11958)

Comment 4 David Walser 2020-04-23 20:34:46 CEST 
Ubuntu has issued an advisory for this on April 22:
https://usn.ubuntu.com/4338-1/
Note You need to log in before you can comment on or make changes to this bug.