Ubuntu
vlc package

Buffer overflow in CUE image support

Bug #294243 reported by Rémi Denis-Courmont
270
Affects Status Importance Assigned to Milestone
The Dell Mini Project
Fix Released
Undecided
Unassigned
vlc (Ubuntu)
Fix Released
Undecided
Unassigned
Dapper
Won't Fix
Undecided
Unassigned
Gutsy
Won't Fix
Undecided
Unassigned
Hardy
Fix Released
Undecided
Unassigned
Intrepid
Fix Released
Undecided
Unassigned
Jaunty
Fix Released
Undecided
Unassigned

Bug Description

Binary package hint: vlc

VLC 0.5.0-0.9.5 suffer from a buffer overflow in the CUE image file support.

Patch attached.

Revision history for this message
Rémi Denis-Courmont (rdenis) wrote :
Revision history for this message
Jamie Strandboge (jdstrand) wrote :

Thanks for you patch. Is this a known upstream issue and have you contacted upstream?

Revision history for this message
Rémi Denis-Courmont (rdenis) wrote :

I *am* upstream. Patch has already been merged ages ago.

Revision history for this message
Jamie Strandboge (jdstrand) wrote :

Jaunty has 0.9.8a-1ubuntu3 and is not affected.

Changed in vlc:
status: New → Fix Released
status: New → Confirmed
status: New → Confirmed
status: New → Confirmed
status: New → In Progress
Revision history for this message
Jamie Strandboge (jdstrand) wrote :

Patch applies cleanly to Intrepid, so I will apply it and upload. Dapper-Hardy need updated patches/debdiffs. This package is in universe and is community supported. If you are able, perhaps you could prepare debdiffs to fix this by following https://wiki.ubuntu.com/SecurityUpdateProcedures.

Changed in vlc:
status: In Progress → Confirmed
status: Confirmed → Fix Committed
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package vlc - 0.9.4-1ubuntu3.1

---------------
vlc (0.9.4-1ubuntu3.1) intrepid-security; urgency=low

  * SECURITY UPDATE: Fix buffer overflow in CUE image file support
    - Patch from upstream Rémi Denis-Courmont (LP: #294243)
    - CVE-2008-5032

 -- Jamie Strandboge <email address hidden> Tue, 24 Feb 2009 14:55:44 -0600

Changed in vlc:
status: Fix Committed → Fix Released
Revision history for this message
Sergio Zanchetta (primes2h) wrote :

The 18 month support period for Gutsy Gibbon 7.10 has reached its end of life -
http://www.ubuntu.com/news/ubuntu-7.10-eol . As a result, we are closing the
Gutsy task.

Changed in vlc (Ubuntu Gutsy):
status: Confirmed → Won't Fix
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package vlc - 0.8.6.release.e+x264svn20071224+faad2.6.1-0ubuntu3.3

---------------
vlc (0.8.6.release.e+x264svn20071224+faad2.6.1-0ubuntu3.3) hardy-security; urgency=low

  * SECURITY UPDATE: aribrary code execution via invalid cue image file.
    (LP: #294243)
    - debian/patches/042_CVE-2008-5032.diff: make sure we don't overflow
      p_sectors in modules/access/vcd/cdrom.c
    - CVE-2008-5032

 -- Marc Deslauriers <email address hidden> Sun, 28 Jun 2009 10:11:40 -0400

Changed in vlc (Ubuntu Hardy):
status: Confirmed → Fix Released
Revision history for this message
Nicola Ferralis (feranick) wrote :

Adding the dell-mini project. It uses its own custom version of Hardy, and it is still unpatched (version vlc (0.8.6.release.e+x264svn20071224+faad2.6.1-0ubuntu3.2).

Ethan Puzarne (epuzarne)
Changed in dell-mini:
status: New → Confirmed
Revision history for this message
Reinhard Tartler (siretart) wrote :

Dapper has been EOL long ago, closing this bug

Changed in vlc (Ubuntu Dapper):
status: Confirmed → Won't Fix
Changed in dell-mini:
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.

Duplicates of this bug

Subscribing...

Other bug subscribers

Patches

Remote bug watches

Bug watches keep track of this bug in other bug trackers.