Bug 1189887 - (CVE-2021-38714) VUL-0: CVE-2021-38714: plib: integer overflow could lead to arbitrary code execution
(CVE-2021-38714)
VUL-0: CVE-2021-38714: plib: integer overflow could lead to arbitrary code ex...
Status: IN_PROGRESS
Classification: openSUSE
Product: openSUSE Distribution
Classification: openSUSE
Component: Security
Leap 15.2
Other Other
: P3 - Medium : Normal (vote)
: ---
Assigned To: Security Team bot
Security Team bot
https://smash.suse.de/issue/307938/
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2021-08-27 13:16 UTC by Gabriele Sonnu
Modified: 2021-12-01 17:37 UTC (History)
0 users

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Gabriele Sonnu 2021-08-27 13:16:21 UTC
In Plib through 1.85, there is an integer overflow vulnerability that could result in arbitrary code execution. The vulnerability is found in ssgLoadTGA() function in src/ssg/ssgLoadTGA.cxx file.

Reference:

https://sourceforge.net/p/plib/bugs/55/

References:
https://bugzilla.redhat.com/show_bug.cgi?id=1997814
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-38714
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38714
https://sourceforge.net/p/plib/bugs/55/
Comment 1 Gabriele Sonnu 2021-08-27 13:18:06 UTC
Affected packages

- openSUSE:Backports:SLE-15/plib      1.8.5+svn.2173
- openSUSE:Backports:SLE-15-SP1/plib  1.8.5+svn.2173
- openSUSE:Backports:SLE-15-SP2/plib  1.8.5+svn.2173
- openSUSE:Backports:SLE-15-SP3/plib  1.8.5+svn.2173
- openSUSE:Backports:SLE-15-SP4/plib  1.8.5+svn.2173
- openSUSE:Factory/plib               1.8.5+svn.2173

No upstream patch is available.
Comment 2 Luigi Baldoni 2021-08-27 21:00:48 UTC
I'm afraid there's little to be done here. Upstream doesn't want to fix it, so we'll just wait for a volunteer.

Or delete the package if deemed too dangerous.
Comment 3 Luigi Baldoni 2021-08-31 06:23:59 UTC
Updates sent.
Comment 4 OBSbugzilla Bot 2021-08-31 07:00:06 UTC
This is an autogenerated message for OBS integration:
This bug (1189887) was mentioned in
https://build.opensuse.org/request/show/915177 15.2+Backports:SLE-15-SP1+Backports:SLE-15-SP2+Backports:SLE-15-SP3 / plib
Comment 5 Marcus Meissner 2021-08-31 07:58:36 UTC
i filed a droprequest as this package is unmaintained:

osc dr openSUSE:Factory plib
Comment 6 Swamp Workflow Management 2021-11-28 14:17:32 UTC
openSUSE-RU-2021:1511-1: An update that has one recommended fix can now be installed.

Category: recommended (moderate)
Bug References: 1189887
CVE References: 
JIRA References: 
Sources used:
openSUSE Leap 15.2 (src):    plib-1.8.5+svn.2173-lp152.5.3.1
openSUSE Backports SLE-15-SP3 (src):    plib-1.8.5+svn.2173-bp153.2.3.1
openSUSE Backports SLE-15-SP2 (src):    plib-1.8.5+svn.2173-bp152.5.3.1
openSUSE Backports SLE-15-SP1 (src):    plib-1.8.5+svn.2173-bp151.4.3.1
Comment 7 Swamp Workflow Management 2021-12-01 17:37:01 UTC
openSUSE-RU-2021:1514-1: An update that has one recommended fix can now be installed.

Category: recommended (moderate)
Bug References: 1189887
CVE References: 
JIRA References: 
Sources used:
openSUSE Backports SLE-15-SP2 (src):    plib-1.8.5+svn.2173-bp152.5.6.1