[Bug libc/22247] New: CVE-2017-14062 : Integer overflow in the decode_digit function in puny_decode.c in libidn

classic Classic list List threaded Threaded
6 messages Options
Reply | Threaded
Open this post in threaded view
|

[Bug libc/22247] New: CVE-2017-14062 : Integer overflow in the decode_digit function in puny_decode.c in libidn

maiku.fabian at gmail dot com
https://sourceware.org/bugzilla/show_bug.cgi?id=22247

            Bug ID: 22247
           Summary: CVE-2017-14062 : Integer overflow in the decode_digit
                    function in puny_decode.c in libidn
           Product: glibc
           Version: unspecified
            Status: UNCONFIRMED
          Severity: normal
          Priority: P2
         Component: libc
          Assignee: unassigned at sourceware dot org
          Reporter: dilfridge at gentoo dot org
                CC: drepper.fsp at gmail dot com
  Target Milestone: ---

In bug Gentoo-629466 [1] Jeroen Roovers found that glibc is vulnerable to the
same CVE-2017-14062 [2] as libidn is; see also bug Gentoo-632556 [3].

"Integer overflow in the decode_digit function in puny_decode.c in Libidn2
before 2.0.4 allows remote attackers to cause a denial of service or possibly
have unspecified other impact."

The backport to libidn-1, which should also apply to the glibc code, can be
found here [4].

[1] https://bugs.gentoo.org/show_bug.cgi?id=629466
[2] https://nvd.nist.gov/vuln/detail/CVE-2017-14062
[3] https://bugs.gentoo.org/632556
[4]
https://git.savannah.gnu.org/gitweb/?p=libidn.git;a=commitdiff;h=e9e81b8063b095b02cf104bb992fa9bf9515b9d8

--
You are receiving this mail because:
You are on the CC list for the bug.
Reply | Threaded
Open this post in threaded view
|

[Bug libc/22247] CVE-2017-14062 : Integer overflow in the decode_digit function in puny_decode.c in libidn

maiku.fabian at gmail dot com
https://sourceware.org/bugzilla/show_bug.cgi?id=22247

Andreas K. Huettel <dilfridge at gentoo dot org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           See Also|                            |https://bugs.gentoo.org/sho
                   |                            |w_bug.cgi?id=632556

--
You are receiving this mail because:
You are on the CC list for the bug.
Reply | Threaded
Open this post in threaded view
|

[Bug libc/22247] CVE-2017-14062 : Integer overflow in the decode_digit function in puny_decode.c in libidn

maiku.fabian at gmail dot com
In reply to this post by maiku.fabian at gmail dot com
https://sourceware.org/bugzilla/show_bug.cgi?id=22247

Florian Weimer <fweimer at redhat dot com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |fweimer at redhat dot com
              Flags|                            |security+

--
You are receiving this mail because:
You are on the CC list for the bug.
Reply | Threaded
Open this post in threaded view
|

[Bug libc/22247] CVE-2017-14062 : Integer overflow in the decode_digit function in puny_decode.c in libidn

maiku.fabian at gmail dot com
In reply to this post by maiku.fabian at gmail dot com
https://sourceware.org/bugzilla/show_bug.cgi?id=22247

--- Comment #1 from Andreas K. Huettel <dilfridge at gentoo dot org> ---
Needs another libidn commit, it seems.
http://git.savannah.gnu.org/gitweb/?p=libidn.git;a=commit;h=6c8a9375641ca283b50f9680c90dcd57f9c44798

--
You are receiving this mail because:
You are on the CC list for the bug.
Reply | Threaded
Open this post in threaded view
|

[Bug libc/22247] CVE-2017-14062 : Integer overflow in the decode_digit function in puny_decode.c in libidn

maiku.fabian at gmail dot com
In reply to this post by maiku.fabian at gmail dot com
https://sourceware.org/bugzilla/show_bug.cgi?id=22247

Florian Weimer <fweimer at redhat dot com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|UNCONFIRMED                 |ASSIGNED
   Last reconfirmed|                            |2018-01-10
           Assignee|unassigned at sourceware dot org   |fweimer at redhat dot com
     Ever confirmed|0                           |1

--
You are receiving this mail because:
You are on the CC list for the bug.
Reply | Threaded
Open this post in threaded view
|

[Bug libc/22247] Integer overflow in the decode_digit function in puny_decode.c in libidn (CVE-2017-14062)

maiku.fabian at gmail dot com
In reply to this post by maiku.fabian at gmail dot com
https://sourceware.org/bugzilla/show_bug.cgi?id=22247

Florian Weimer <fweimer at redhat dot com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
            Summary|CVE-2017-14062 : Integer    |Integer overflow in the
                   |overflow in the             |decode_digit function in
                   |decode_digit function in    |puny_decode.c in libidn
                   |puny_decode.c in libidn     |(CVE-2017-14062)
              Alias|                            |CVE-2017-14062

--
You are receiving this mail because:
You are on the CC list for the bug.