|
Bugzilla – Full Text Bug Listing |
| Summary: | VUL-0: CVE-2023-2804: libjpeg-turbo: heap-buffer-overflow in h2v2_merged_upsample_internal() at /libjpeg-turbo/jdmrgext.c | ||
|---|---|---|---|
| Product: | [Novell Products] SUSE Security Incidents | Reporter: | Stoyan Manolov <stoyan.manolov> |
| Component: | Incidents | Assignee: | Security Team bot <security-team> |
| Status: | RESOLVED INVALID | QA Contact: | Security Team bot <security-team> |
| Severity: | Normal | ||
| Priority: | P3 - Medium | CC: | pgajdos, security-team |
| Version: | unspecified | ||
| Target Milestone: | --- | ||
| Hardware: | Other | ||
| OS: | Other | ||
| URL: | https://smash.suse.de/issue/367014/ | ||
| Whiteboard: | CVSSv3.1:SUSE:CVE-2023-2804:5.1:(AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H) | ||
| Found By: | Security Response Team | Services Priority: | |
| Business Priority: | Blocker: | --- | |
| Marketing QA Status: | --- | IT Deployment: | --- |
|
Description
Stoyan Manolov
2023-05-19 08:08:41 UTC
(no fix yet) For the POC in the upstream github issue, I get: :/211542 # djpeg -fast 237670513-1d36b472-7dc9-4827-8694-07f0c5261bc1.jpeg Unsupported JPEG process: SOF type 0xc3 :/211542 # for all TW,15sp4,15,12/libjpeg-turbo. So we might be unaffected. The upstream issue related to this CVE is rather: https://github.com/libjpeg-turbo/libjpeg-turbo/issues/675 Nevertheless I get the same error: :/211542 # djpeg -nosmooth poc_tmin124 Unsupported JPEG process: SOF type 0xc3 :/211542 # Also the upstream issue says: "This bug is not reproducible with the 2.1.x branch." Patched jdlossls.c is not part of any our code stream. Closing as invalid. This is an autogenerated message for OBS integration: This bug (1211542) was mentioned in https://build.opensuse.org/request/show/1136149 Factory / libjpeg-turbo |