Bug 1173588 (CVE-2018-3848)

Summary:	VUL-0: CVE-2018-3848: cfitsio: Stack-based buffer overflow in ffghbn() allows for potential code execution
Product:	[openSUSE] openSUSE Distribution	Reporter:	Alexandros Toptsoglou <atoptsoglou>
Component:	Security	Assignee:	Security Team bot <security-team>
Status:	RESOLVED INVALID	QA Contact:	Security Team bot <security-team>
Severity:	Major
Priority:	P5 - None
Version:	Leap 15.1
Target Milestone:	---
Hardware:	Other
OS:	Other
URL:	https://smash.suse.de/issue/204061/
Whiteboard:
Found By:	Security Response Team	Services Priority:
Business Priority:		Blocker:	---
Marketing QA Status:	---	IT Deployment:	---

Description Alexandros Toptsoglou 2020-07-01 15:06:47 UTC

CVE-2018-3848

CFITSIO through version 3.42 has a stack-based buffer overflow vulnerability in the ffghbn() function that can potentially allow an attacker to execute code via a crafted FIT image file.


External References:

https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0531
https://heasarc.gsfc.nasa.gov/FTP/software/fitsio/c/docs/changes2.txt


Additional References:

https://github.com/astropy/astropy/pull/7274

References:
https://bugzilla.redhat.com/show_bug.cgi?id=1568180
https://bugzilla.redhat.com/show_bug.cgi?id=1850866
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-3848
http://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-3848.html
https://access.redhat.com/security/cve/CVE-2018-3848
http://www.cvedetails.com/cve/CVE-2018-3848/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3848
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0531

Comment 1 Alexandros Toptsoglou 2020-07-01 15:07:41 UTC

We ship the version 2.44 in Leap 15.1 and 15.2 and 3.47 in TW which are already
fixed.