Bugzilla – Bug 1193365
VUL-0: CVE-2020-36131: libaom: AOM v2.0.1 was discovered to contain a stack buffer overflow via the component stats/rate_hist.c.
Last modified: 2022-03-25 09:16:04 UTC
CVE-2020-36131 AOM v2.0.1 was discovered to contain a stack buffer overflow via the component stats/rate_hist.c. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-36131 https://bugs.chromium.org/p/aomedia/issues/detail?id=2911&q=&can=1 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36131 http://www.cvedetails.com/cve/CVE-2020-36131/
SUSE:SLE-15-SP2:Update is affected. The patch was already introduced in openSUSE:Factory. I could not reproduce the vulnerability, probably due to us having an older version of the package - the CLI options are different and I'm not too familiar with this utility - but the vulnerable code is present. Upstream patch: https://aomedia.googlesource.com/aom/+/94bcbfe76b0fd5b8ac03645082dc23a88730c949%5E%21/
I'll try to take over.
Yes, no segfault reproduced for 15sp2/libaom: :/193356 # aomenc --pass=2 --usage=1 -o /dev/null ./poc3 Warning: Assuming --pass=2 implies --passes=2 Fatal: Failed to get config: Invalid parameter :/193356 # Nor valgrind had shown any issue to me. I had not tried ASAN.
Package 15sp2/libaom submitted.
SUSE-SU-2021:4170-1: An update that fixes four vulnerabilities is now available. Category: security (moderate) Bug References: 1193356,1193365,1193366,1193369 CVE References: CVE-2020-36129,CVE-2020-36130,CVE-2020-36131,CVE-2020-36135 JIRA References: Sources used: SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (src): libaom-1.0.0-3.9.1 SUSE Linux Enterprise Module for Desktop Applications 15-SP2 (src): libaom-1.0.0-3.9.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
openSUSE-SU-2021:4170-1: An update that fixes four vulnerabilities is now available. Category: security (moderate) Bug References: 1193356,1193365,1193366,1193369 CVE References: CVE-2020-36129,CVE-2020-36130,CVE-2020-36131,CVE-2020-36135 JIRA References: Sources used: openSUSE Leap 15.3 (src): libaom-1.0.0-3.9.1
openSUSE-SU-2021:1624-1: An update that fixes four vulnerabilities is now available. Category: security (moderate) Bug References: 1193356,1193365,1193366,1193369 CVE References: CVE-2020-36129,CVE-2020-36130,CVE-2020-36131,CVE-2020-36135 JIRA References: Sources used: openSUSE Leap 15.2 (src): libaom-1.0.0-lp152.3.9.1
done