Bug 1180033 (CVE-2020-0470) - VUL-1: CVE-2020-0470: libaom: In extend_frame_highbd of restoration.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. U
Summary: VUL-1: CVE-2020-0470: libaom: In extend_frame_highbd of restoration.c, there ...
Status: RESOLVED FIXED
Alias: CVE-2020-0470
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P4 - Low : Minor
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/273345/
Whiteboard: CVSSv3.1:SUSE:CVE-2020-0470:5.5:(AV:L...
Keywords:
Depends on:
Blocks:
 
Reported: 2020-12-15 07:07 UTC by Marcus Meissner
Modified: 2024-05-14 10:52 UTC (History)
6 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2020-12-15 07:07:39 UTC
CVE-2020-0470

In extend_frame_highbd of restoration.c, there is a possible out of bounds write
due to a heap buffer overflow. This could lead to remote information disclosure
with no additional execution privileges needed. User interaction is needed for
exploitation.Product: AndroidVersions: Android-11 Android-10Android ID:
A-166268541

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-0470
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0470
https://source.android.com/security/bulletin/2020-12-01

https://android.googlesource.com/platform/external/libaom/+/816f15265cb89a02d7ce4b657de277828e71a4b1
Comment 2 Petr Gajdos 2022-03-30 13:34:02 UTC
There is not much info. Could you please elaborate, eventually?
Comment 4 Carlos López 2023-04-24 14:14:05 UTC
This commit on LineageOS references the same Android bug as the security advisory (166268541):
https://github.com/LineageOS/android_external_libaom/commit/d59a4843bdf8ceb25f22712f3009f160b6ccef30

So I'd say those are the relevant changes.
Comment 7 Petr Gajdos 2023-05-23 09:40:38 UTC
15sp4 and TW has the fix in already.

Submitted for 15sp2/libaom and with that, I believe all fixed.
Comment 9 Maintenance Automation 2023-05-30 16:30:40 UTC
SUSE-SU-2023:2314-1: An update that solves one vulnerability can now be installed.

Category: security (moderate)
Bug References: 1180033
CVE References: CVE-2020-0470
Sources used:
openSUSE Leap 15.4 (src): libaom-1.0.0-150200.3.15.1
SUSE Linux Enterprise Real Time 15 SP3 (src): libaom-1.0.0-150200.3.15.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.