Bug 1084256 - (CVE-2017-12122) VUL-0: CVE-2017-12122: SDL_image, SDL2_image: Potential code execution in the ILBM image rendering fuctionality
(CVE-2017-12122)
VUL-0: CVE-2017-12122: SDL_image, SDL2_image: Potential code execution in the...
Status: RESOLVED FIXED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Normal
: ---
Assigned To: Security Team bot
Security Team bot
https://smash.suse.de/issue/201295/
CVSSv3:RedHat:CVE-2017-12122:6.3:(AV:...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2018-03-07 07:19 UTC by Johannes Segitz
Modified: 2018-11-21 10:46 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Johannes Segitz 2018-03-07 07:19:43 UTC
A flaw was found in Simple DirectMedia Layer. An exploitable code execution vulnerability exists in the ILBM image rendering functionality of SDL2_image-2.0.2. A specially crafted ILBM image can cause a heap overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability.

References:
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0488
https://bugzilla.redhat.com/show_bug.cgi?id=1552131
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-12122
http://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-12122.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12122
Comment 1 Johannes Segitz 2018-03-07 07:56:17 UTC
SDL_image in SLE 11 SP4 affected. Also openSUSE
Comment 2 Swamp Workflow Management 2018-03-09 09:30:18 UTC
This is an autogenerated message for OBS integration:
This bug (1084256) was mentioned in
https://build.opensuse.org/request/show/584627 42.3 / SDL2_image
Comment 3 Swamp Workflow Management 2018-03-09 15:40:27 UTC
This is an autogenerated message for OBS integration:
This bug (1084256) was mentioned in
https://build.opensuse.org/request/show/585027 42.3 / SDL2+SDL2_image
Comment 4 Swamp Workflow Management 2018-03-18 14:09:34 UTC
openSUSE-SU-2018:0734-1: An update that solves 7 vulnerabilities and has one errata is now available.

Category: security (important)
Bug References: 1025413,1084256,1084257,1084282,1084288,1084297,1084303,1084304
CVE References: CVE-2017-12122,CVE-2017-14440,CVE-2017-14441,CVE-2017-14442,CVE-2017-14448,CVE-2017-14449,CVE-2017-14450
Sources used:
openSUSE Leap 42.3 (src):    SDL2-2.0.8-18.1, SDL2_image-2.0.3-13.10.1
Comment 5 Jan Engelhardt 2018-03-26 12:10:00 UTC
swamp says it's out
Comment 8 Qiang Zheng 2018-09-10 08:44:20 UTC
The fix to openSUSE:Leap:42.3 is on SDL2_image that upgrading it from 2.0.0 to 2.0.3, and SUSE:SLE-11:SP4 uses SDL_image other than SDL2_image. Nobody touched SDL_image-1.2.6 for 10+ years.
Comment 9 Qiang Zheng 2018-09-20 03:16:35 UTC
Can not find backport for this CVE, including backports for those CVEs: CVE-2017-12122,CVE-2017-14440,CVE-2017-14441,CVE-2017-14442,CVE-2017-14448,CVE-2017-14449,CVE-2017-14450.
Comment 10 Qiang Zheng 2018-09-20 06:48:04 UTC
I am finding some ways and working on it.
Comment 15 Swamp Workflow Management 2018-11-07 20:10:49 UTC
SUSE-SU-2018:3657-1: An update that fixes 6 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1084256,1084257,1084288,1084303,1084304,1089087
CVE References: CVE-2017-12122,CVE-2017-14440,CVE-2017-14442,CVE-2017-14448,CVE-2017-14450,CVE-2018-3839
Sources used:
SUSE Linux Enterprise Software Development Kit 11-SP4 (src):    SDL_image-1.2.6-84.42.1
SUSE Linux Enterprise Debuginfo 11-SP4 (src):    SDL_image-1.2.6-84.42.1
Comment 16 Marcus Meissner 2018-11-21 10:46:42 UTC
done