Bug 1037125 - VUL-0: CVE-2017-7476: lftp: gnulib: Out-of-bounds write by setting a large TZ variable
VUL-0: CVE-2017-7476: lftp: gnulib: Out-of-bounds write by setting a large TZ...
Status: RESOLVED UPSTREAM
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P5 - None : Minor
: ---
Assigned To: Peter Simons
Security Team bot
https://smash.suse.de/issue/184455/
CVSSv2:SUSE:CVE-2017-7476:4.4:(AV:L/...
:
Depends on:
Blocks: CVE-2017-7476
  Show dependency treegraph
 
Reported: 2017-05-02 08:38 UTC by Marcus Meissner
Modified: 2017-05-02 09:43 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2017-05-02 08:38:53 UTC
this bug is about the gnulib copy embedded in lftp.


+++ This bug was initially created as a clone of Bug #1036636 +++

rh#1445185

An out-of-bounds heap write vulnerability was found in date. Maliciously crafted TZ variable could be used to run arbitrary code as the user running date.

References:
https://bugzilla.redhat.com/show_bug.cgi?id=1445185
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7476
Comment 1 Marcus Meissner 2017-05-02 09:39:48 UTC
lftp gnulib is too old to be affected even in factory.
Comment 2 Marcus Meissner 2017-05-02 09:43:50 UTC
fixed once lftp imports newer gnulib