[Bug 1173718] New: VUL-1: libmicrohttpd: buffer overflow issue in URL parser
http://bugzilla.opensuse.org/show_bug.cgi?id=1173718 Bug ID: 1173718 Summary: VUL-1: libmicrohttpd: buffer overflow issue in URL parser Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.1 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: tchvatal@suse.com Reporter: Andreas.Stieger@gmx.de QA Contact: qa-bugs@suse.de CC: security-team@suse.de Found By: Security Response Team Blocker: --- libmicrohttpd before 0.9.71 contains a buffer overflow issue in URL parser implemented in the post_process_urlencoded function. From https://git.gnunet.org/libmicrohttpd.git/commit/?id=a110ae6276660bee3caab30e...
Fix buffer overflow issue in URL parser.
code fix: https://git.gnunet.org/libmicrohttpd.git/diff/src/microhttpd/postprocessor.c... test: https://git.gnunet.org/libmicrohttpd.git/diff/src/microhttpd/test_postproces... -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1173718 http://bugzilla.opensuse.org/show_bug.cgi?id=1173718#c1 --- Comment #1 from Andreas Stieger <Andreas.Stieger@gmx.de> --- https://build.opensuse.org/request/show/818763 -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1173718 http://bugzilla.opensuse.org/show_bug.cgi?id=1173718#c5 Dominique Leuenberger <dimstar@opensuse.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED CC| |dimstar@opensuse.org Resolution|FIXED |--- --- Comment #5 from Dominique Leuenberger <dimstar@opensuse.org> --- (In reply to OBSbugzilla Bot from comment #4)
This is an autogenerated message for OBS integration: This bug (1173718) was mentioned in https://build.opensuse.org/request/show/834744 Factory / libmicrohttpd
NOTE: The upgrade is not an easy-fly-by, as API is changed i.e libyui-rest-api fails to build: https://build.opensuse.org/package/live_build_log/openSUSE:Factory:Staging:I...
[ 40s] /usr/bin/c++ -fPIC -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -Werror=return-type -flto=auto -g -DNDEBUG -DNDEBUG -std=c++0x -fmessage-length=0 -Wall -Werror -O3 -flto=auto -Wl,--as-needed -Wl,--no-undefined -Wl,-z,now -Wl,--no-undefined -shared -Wl,-soname,libyui-rest-api.so.14 -o libyui-rest-api.so.14.0.0 CMakeFiles/yui-rest-api.dir/YHttpServer.cc.o CMakeFiles/yui-rest-api.dir/YHttpHandler.cc.o CMakeFiles/yui-rest-api.dir/YHttpDialogHandler.cc.o CMakeFiles/yui-rest-api.dir/YHttpRootHandler.cc.o CMakeFiles/yui-rest-api.dir/YHttpVersionHandler.cc.o CMakeFiles/yui-rest-api.dir/YHttpAppHandler.cc.o CMakeFiles/yui-rest-api.dir/YTableActionHandler.cc.o CMakeFiles/yui-rest-api.dir/YHttpWidgetsHandler.cc.o CMakeFiles/yui-rest-api.dir/YHttpWidgetsActionHandler.cc.o CMakeFiles/yui-rest-api.dir/YHttpMount.cc.o CMakeFiles/yui-rest-api.dir/YJsonSerializer.cc.o CMakeFiles/yui-rest-api.dir/YWidgetFinder.c c.o -ldl -lpthread -lmicrohttpd -ljsoncpp /usr/lib64/libyui.so.14.0.0 -ldl -lpthread [ 40s] /home/abuild/rpmbuild/BUILD/libyui-rest-api-0.5.11/src/YHttpHandler.h:45:24: error: 'handle' violates the C++ One Definition Rule [-Werror=odr] [ 41s] 45 | virtual MHD_RESULT handle(struct MHD_Connection* connection, [ 41s] | ^ [ 41s] /home/abuild/rpmbuild/BUILD/libyui-rest-api-0.5.11/src/YHttpHandler.cc:27:12: note: return value type mismatch [ 41s] 27 | MHD_RESULT YHttpHandler::handle(struct MHD_Connection* connection, [ 41s] | ^ [ 41s] /usr/include/microhttpd.h:141:6: note: type 'MHD_Result' should match type 'int' [ 41s] 141 | enum MHD_Result [ 41s] | ^ [ 41s] /home/abuild/rpmbuild/BUILD/libyui-rest-api-0.5.11/src/YHttpHandler.cc:27:12: note: 'handle' was previously declared here [ 41s] 27 | MHD_RESULT YHttpHandler::handle(struct MHD_Connection* connection, [ 41s] | ^ [ 41s] lto1: all warnings being treated as errors [ 41s] lto-wrapper: fatal error: /usr/bin/c++ returned 1 exit status
pcp fails with similar errors; so in order to have this sec review fixed (and the SR acceptable to TW) we need at least those two packages fixed in parallel - or mhd not changing API -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1173718 Dominique Leuenberger <dimstar@opensuse.org> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |ddiss@suse.com, | |kkaempf@suse.com, | |meissner@suse.com, | |yast-internal@suse.de -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1173718 Klaus K�mpf <kkaempf@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |locilka@suse.com -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com