Bug 1197455 – VUL-1: CVE-2021-28277: A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.05 is affected by: Buffer Overflow via the RemoveUnknownSections function in jpgfile.c.

Bug 1197455 - (CVE-2021-28277) VUL-1: CVE-2021-28277: A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.05 is affected by: Buffer Overflow via the RemoveUnknownSections function in jpgfile.c.

(CVE-2021-28277)
Summary:	VUL-1: CVE-2021-28277: A Heap-based Buffer Overflow vulnerabilty exists in jh...

Status:	IN_PROGRESS

Classification:	openSUSE
Product:	openSUSE Distribution
Classification:	openSUSE
Component:	Basesystem
Version:	Leap 15.3
Hardware:	Other Other

Priority:	P4 - Low Severity: Normal (vote)
Target Milestone:	---
Assigned To:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/327047/
Whiteboard:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Create test case

Clone This Bug

Reported:	2022-03-24 06:38 UTC by Alexander Bergmann
Modified:	2022-07-25 01:24 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Alexander Bergmann 2022-03-24 06:38:02 UTC

CVE-2021-28277

A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.05 is
affected by: Buffer Overflow via the RemoveUnknownSections function in
jpgfile.c.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28277
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28277
https://github.com/Matthias-Wandel/jhead/issues/16

Comment 1 OBSbugzilla Bot 2022-07-25 00:40:13 UTC

This is an autogenerated message for OBS integration:
This bug (1197455) was mentioned in
https://build.opensuse.org/request/show/990913 Backports:SLE-15-SP3 / jhead

Comment 2 Stanislav Brabec 2022-07-25 01:24:19 UTC

There is a strange thing in Backports:
openSUSE:Backports:SLE-15:Update contains version 3.00
openSUSE:Backports:SLE-15-SP1:Update contains version 3.00
openSUSE:Backports:SLE-15-SP2:Update contains version 3.06.0.1
openSUSE:Backports:SLE-15-SP3:Update contains version 3.00
openSUSE:Backports:SLE-15-SP4:Update contains version 3.06.0.1, but a slightly different spec than SP2

That is why I suggest to fix this bug by updating all repositories to 3.06.0.1.

It is a binary tool, there are no known incompatibilities.

Submitted 3.06.0.1 for:
openSUSE:Backports:SLE-15-SP3:Update: https://build.opensuse.org/request/show/990913
openSUSE:Backports:SLE-15-SP1:Update: BuildService API error: Server did not define a default maintenance project, can't submit.
openSUSE:Backports:SLE-15:Update: BuildService API error: Server did not define a default maintenance project, can't submit.

If SLE 15 and SP1 are wanted, please tell me where to submit.