Bug 1189497 – VUL-0: CVE-2021-30475: libaom: Buffer overflow in aom_dsp/noise_model.c

Bug 1189497 - (CVE-2021-30475) VUL-0: CVE-2021-30475: libaom: Buffer overflow in aom_dsp/noise_model.c

(CVE-2021-30475)
Summary:	VUL-0: CVE-2021-30475: libaom: Buffer overflow in aom_dsp/noise_model.c

Status:	RESOLVED FIXED

Classification:	Novell Products
Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents
Version:	unspecified
Hardware:	Other Other

Priority:	P2 - High Severity: Major
Target Milestone:	---
Assigned To:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/301270/
Whiteboard:	CVSSv3.1:SUSE:CVE-2021-30475:7.8:(AV:...
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Create test case

Clone This Bug

Reported:	2021-08-17 08:20 UTC by Robert Frohl
Modified:	2022-03-25 09:06 UTC (History)
CC List:	3 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Robert Frohl 2021-08-17 08:20:51 UTC

rh#1968017

aom_dsp/noise_model.c in libaom in AOMedia before 2021-03-24 has a buffer overflow.

References:

https://aomedia.googlesource.com/aom/+/12adc723acf02633595a4d8da8345742729f46c0
https://bugs.chromium.org/p/aomedia/issues/detail?id=2999

References:
https://bugzilla.redhat.com/show_bug.cgi?id=1968017
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-30475
https://bugs.chromium.org/p/aomedia/issues/detail?id=2999
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30475
https://aomedia.googlesource.com/aom/+/12adc723acf02633595a4d8da8345742729f46c0
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXCI33HXH6YSOGC2LPE2REQLMIDH6US4/

Comment 1 Robert Frohl 2021-08-17 08:29:12 UTC

tracking as affected:

- SUSE:SLE-15-SP2:Update/libaom

Comment 2 Robert Frohl 2021-08-17 10:58:44 UTC

this seems to be tied to the encoder for av1 mainly, lowering priority again

Comment 3 Petr Gajdos 2021-08-25 09:36:46 UTC

devel project:
https://build.opensuse.org/request/show/914191
15sp2:
https://build.suse.de/request/show/248808

I believe all fixed.

Comment 4 Swamp Workflow Management 2021-09-09 16:29:24 UTC

# maintenance_jira_update_notice
SUSE-SU-2021:3005-1: An update that fixes one vulnerability is now available.

Category: security (important)
Bug References: 1189497
CVE References: CVE-2021-30475
JIRA References: 
Sources used:
SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (src):    libaom-1.0.0-3.3.1
SUSE Linux Enterprise Module for Desktop Applications 15-SP2 (src):    libaom-1.0.0-3.3.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.

Comment 5 Swamp Workflow Management 2021-09-09 16:40:59 UTC

# maintenance_jira_update_notice
openSUSE-SU-2021:3005-1: An update that fixes one vulnerability is now available.

Category: security (important)
Bug References: 1189497
CVE References: CVE-2021-30475
JIRA References: 
Sources used:
openSUSE Leap 15.3 (src):    libaom-1.0.0-3.3.1

Comment 6 Swamp Workflow Management 2021-09-14 13:23:24 UTC

# maintenance_jira_update_notice
openSUSE-SU-2021:1254-1: An update that fixes one vulnerability is now available.

Category: security (important)
Bug References: 1189497
CVE References: CVE-2021-30475
JIRA References: 
Sources used:
openSUSE Leap 15.2 (src):    libaom-1.0.0-lp152.3.3.1

Comment 7 Marcus Meissner 2022-03-25 09:06:15 UTC

done