Bug 1181981 – VUL-1: CVE-2020-36148: libmysofa: Incorrect handling of input data in verifyAttribute function

Bug 1181981 - (CVE-2020-36148) VUL-1: CVE-2020-36148: libmysofa: Incorrect handling of input data in verifyAttribute function

(CVE-2020-36148)
Summary:	VUL-1: CVE-2020-36148: libmysofa: Incorrect handling of input data in verifyA...

Status:	IN_PROGRESS

Classification:	openSUSE
Product:	openSUSE Distribution
Classification:	openSUSE
Component:	Security
Version:	Leap 15.2
Hardware:	Other Other

Priority:	P4 - Low Severity: Minor (vote)
Target Milestone:	---
Assigned To:	Mia Herkt
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/277472/
Whiteboard:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Create test case

Clone This Bug

Reported:	2021-02-09 08:57 UTC by Alexander Bergmann
Modified:	2021-03-22 02:19 UTC (History)
CC List:	3 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Alexander Bergmann 2021-02-09 08:57:56 UTC

CVE-2020-36148

Incorrect handling of input data in verifyAttribute function in the libmysofa
library 0.5 - 1.1 will lead to NULL pointer dereference and segmentation fault
error in case of restrictive memory protection or near NULL pointer overwrite in
case of no memory restrictions (e.g. in embedded environments).

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-36148
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36148
https://github.com/hoene/libmysofa/issues/138

Comment 1 Andreas Stieger 2021-03-01 22:55:35 UTC

Fixed in 1.2: https://build.opensuse.org/request/show/876066

Comment 2 OBSbugzilla Bot 2021-03-08 13:41:06 UTC

This is an autogenerated message for OBS integration:
This bug (1181981) was mentioned in
https://build.opensuse.org/request/show/877733 Backports:SLE-15-SP3 / libmysofa

Comment 3 OBSbugzilla Bot 2021-03-14 20:41:00 UTC

This is an autogenerated message for OBS integration:
This bug (1181981) was mentioned in
https://build.opensuse.org/request/show/878980 15.2 / libmysofa

Comment 4 OBSbugzilla Bot 2021-03-15 01:30:55 UTC

This is an autogenerated message for OBS integration:
This bug (1181981) was mentioned in
https://build.opensuse.org/request/show/879015 15.2 / libmysofa

Comment 5 Swamp Workflow Management 2021-03-18 17:27:45 UTC

openSUSE-SU-2021:0444-1: An update that fixes 13 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1149919,1149920,1149922,1149924,1149926,1159839,1160040,1181977,1181978,1181979,1181980,1181981,1182883
CVE References: CVE-2019-16091,CVE-2019-16092,CVE-2019-16093,CVE-2019-16094,CVE-2019-16095,CVE-2019-20016,CVE-2019-20063,CVE-2020-36148,CVE-2020-36149,CVE-2020-36150,CVE-2020-36151,CVE-2020-36152,CVE-2020-6860
JIRA References: 
Sources used:
openSUSE Leap 15.2 (src):    libmysofa-0.9.1-lp152.3.3.1

Comment 6 OBSbugzilla Bot 2021-03-20 18:40:38 UTC

This is an autogenerated message for OBS integration:
This bug (1181981) was mentioned in
https://build.opensuse.org/request/show/880270 Backports:SLE-15-SP3 / libmysofa

Comment 7 Swamp Workflow Management 2021-03-22 02:19:17 UTC

openSUSE-SU-2021:0459-1: An update that fixes 13 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1149919,1149920,1149922,1149924,1149926,1159839,1160040,1181977,1181978,1181979,1181980,1181981,1182883
CVE References: CVE-2019-16091,CVE-2019-16092,CVE-2019-16093,CVE-2019-16094,CVE-2019-16095,CVE-2019-20016,CVE-2019-20063,CVE-2020-36148,CVE-2020-36149,CVE-2020-36150,CVE-2020-36151,CVE-2020-36152,CVE-2020-6860
JIRA References: 
Sources used:
openSUSE Backports SLE-15-SP2 (src):    libmysofa-0.9.1-bp152.4.3.1