Bugzilla – Bug 1193369
VUL-0: CVE-2020-36130: libaom: AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component av1/av1_dx_iface.c.
Last modified: 2022-03-25 09:16:55 UTC
Created attachment 854280 [details] poc CVE-2020-36130 AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component av1/av1_dx_iface.c. Upstream fix commit: https://aomedia.googlesource.com/aom/+/be4ee75fd762d361d0679cc892e4c74af8140093 References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-36130 https://bugs.chromium.org/p/aomedia/issues/detail?id=2905&q=&can=1 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36130 http://www.cvedetails.com/cve/CVE-2020-36130/
Only the SUSE:SLE-15-SP2:Update version crashes when running the poc, as explained in the chromium bug report. Therefore, only SUSE:SLE-15-SP2:Update codestream is affected.
I'll try to take over.
(In reply to Thomas Leroy from comment #1) > Only the SUSE:SLE-15-SP2:Update version crashes when running the poc, as > explained in the chromium bug report. Therefore, only SUSE:SLE-15-SP2:Update > codestream is affected. Indeed. AFTER I get: :/193369 # aomdec -o /dev/null --framestats=/dev/null ./poc Warning: Read invalid frame size (2147483978) Warning: Failed AOMD_GET_LAST_QUANTIZER: Unspecified internal error :/193369 # instead of a segfault.
Package 15sp2/libaom submitted.
Thank you very much Petr for confirming the bug, and for the submission.
SUSE-SU-2021:4170-1: An update that fixes four vulnerabilities is now available. Category: security (moderate) Bug References: 1193356,1193365,1193366,1193369 CVE References: CVE-2020-36129,CVE-2020-36130,CVE-2020-36131,CVE-2020-36135 JIRA References: Sources used: SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (src): libaom-1.0.0-3.9.1 SUSE Linux Enterprise Module for Desktop Applications 15-SP2 (src): libaom-1.0.0-3.9.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
openSUSE-SU-2021:4170-1: An update that fixes four vulnerabilities is now available. Category: security (moderate) Bug References: 1193356,1193365,1193366,1193369 CVE References: CVE-2020-36129,CVE-2020-36130,CVE-2020-36131,CVE-2020-36135 JIRA References: Sources used: openSUSE Leap 15.3 (src): libaom-1.0.0-3.9.1
openSUSE-SU-2021:1624-1: An update that fixes four vulnerabilities is now available. Category: security (moderate) Bug References: 1193356,1193365,1193366,1193369 CVE References: CVE-2020-36129,CVE-2020-36130,CVE-2020-36131,CVE-2020-36135 JIRA References: Sources used: openSUSE Leap 15.2 (src): libaom-1.0.0-lp152.3.9.1
done