Debian Bug report logs -
#827377
file: CVE-2015-8865: file_check_mem() misbehaves on some input
Reported by: Petter Reinholdtsen <pere@hungry.com>
Date: Wed, 15 Jun 2016 13:09:01 UTC
Severity: important
Found in version file/1:5.22+15-2
Fixed in version file/1:5.24-1
Done: Petter Reinholdtsen <pere@hungry.com>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, Christoph Biedl <debian.axhn@manchmal.in-ulm.de>:
Bug#827377; Package src:file.
(Wed, 15 Jun 2016 13:09:05 GMT) (full text, mbox, link).
Acknowledgement sent
to Petter Reinholdtsen <pere@hungry.com>:
New Bug report received and forwarded. Copy sent to Christoph Biedl <debian.axhn@manchmal.in-ulm.de>.
(Wed, 15 Jun 2016 13:09:05 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: src:file
Version: 1:5.22+15-2
Severity: important
According to
<URL: https://security-tracker.debian.org/tracker/CVE-2015-8865 >, the
file package in Jessie have an open security hole. The description look
like this:
The file_check_mem function in funcs.c in file before 5.23, as used in
the Fileinfo component in PHP before 5.5.34, 5.6.x before 5.6.20, and
7.x before 7.0.5, mishandles continuation-level jumps, which allows
context-dependent attackers to cause a denial of service (buffer
overflow and application crash) or possibly execute arbitrary code via
a crafted magic file.
The problem was fixed in Wheezy (DLA-460-1), but is not listed as fixed
in Jessie. Is there problem still around in Jessie? If not, would you
be willing to upload a update to Jessie?
As the problem is said to be fixed in version 5.23, it is no longer
present in Stretch and Sid.
--
Happy hacking
Petter Reinholdtsen
Reply sent
to Petter Reinholdtsen <pere@hungry.com>:
You have taken responsibility.
(Wed, 15 Jun 2016 13:21:24 GMT) (full text, mbox, link).
Notification sent
to Petter Reinholdtsen <pere@hungry.com>:
Bug acknowledged by developer.
(Wed, 15 Jun 2016 13:21:25 GMT) (full text, mbox, link).
Message #10 received at 827377-done@bugs.debian.org (full text, mbox, reply):
Version: 1:5.23-1
This issue is fixed in a recent package and only unsolved in Jessie.
--
Happy hacking
Petter Reinholdtsen
No longer marked as fixed in versions 1:5.23-1.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Wed, 15 Jun 2016 14:21:12 GMT) (full text, mbox, link).
Marked as fixed in versions file/1:5.24-1.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Wed, 15 Jun 2016 14:21:13 GMT) (full text, mbox, link).
Information forwarded
to debian-bugs-dist@lists.debian.org, Christoph Biedl <debian.axhn@manchmal.in-ulm.de>:
Bug#827377; Package src:file.
(Wed, 15 Jun 2016 15:24:08 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
Extra info received and forwarded to list. Copy sent to Christoph Biedl <debian.axhn@manchmal.in-ulm.de>.
(Wed, 15 Jun 2016 15:24:08 GMT) (full text, mbox, link).
Message #19 received at 827377@bugs.debian.org (full text, mbox, reply):
Hi,
On Wed, Jun 15, 2016 at 03:06:37PM +0200, Petter Reinholdtsen wrote:
> The problem was fixed in Wheezy (DLA-460-1), but is not listed as fixed
> in Jessie. Is there problem still around in Jessie? If not, would you
> be willing to upload a update to Jessie?
It is already pending for a jessie point release, cf. #823794.
Regards,
Salvatore
Information forwarded
to debian-bugs-dist@lists.debian.org, Christoph Biedl <debian.axhn@manchmal.in-ulm.de>:
Bug#827377; Package src:file.
(Wed, 15 Jun 2016 18:54:03 GMT) (full text, mbox, link).
Acknowledgement sent
to Petter Reinholdtsen <pere@hungry.com>:
Extra info received and forwarded to list. Copy sent to Christoph Biedl <debian.axhn@manchmal.in-ulm.de>.
(Wed, 15 Jun 2016 18:54:03 GMT) (full text, mbox, link).
Message #24 received at 827377@bugs.debian.org (full text, mbox, reply):
[Salvatore Bonaccorso]
> It is already pending for a jessie point release, cf. #823794.
Ah, very good. I see <URL: https://bugs.debian.org/823794 > was
accepted for upload 2016-05-14, and I guess it will be uploaded soon. I
will just move on to other tasks, then. :)
--
Happy hacking
Petter Reinholdtsen
Message #25 received at 827377-done@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
Petter Reinholdtsen wrote...
> The problem was fixed in Wheezy (DLA-460-1), but is not listed as fixed
> in Jessie. Is there problem still around in Jessie? If not, would you
> be willing to upload a update to Jessie?
Thanks for the heads-up, as Salvatore mentioned this was supposed to
be handled in a jessie point release. It's now in the queue so it will
arrive in jessie shortly.
Christoph
[signature.asc (application/pgp-signature, inline)]
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Sat, 30 Jul 2016 07:40:58 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 12:57:17 2019;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon