[Bug 1225826] New: VUL-0: CVE-2024-36843: libmodbus: heap overflow via the modbus_mapping_free() function
https://bugzilla.suse.com/show_bug.cgi?id=1225826 Bug ID: 1225826 Summary: VUL-0: CVE-2024-36843: libmodbus: heap overflow via the modbus_mapping_free() function Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.6 Hardware: Other URL: https://smash.suse.de/issue/408370/ OS: Other Status: NEW Severity: Major Priority: P5 - None Component: Security Assignee: sbrabec@suse.com Reporter: smash_bz@suse.de QA Contact: security-team@suse.de CC: camila.matos@suse.com Target Milestone: --- Found By: Security Response Team Blocker: --- libmodbus v3.1.6 was discovered to contain a heap overflow via the modbus_mapping_free() function. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-36843 https://www.cve.org/CVERecord?id=CVE-2024-36843 https://github.com/stephane/libmodbus/issues/748 https://bugzilla.redhat.com/show_bug.cgi?id=2284252 -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1225826 SMASH SMASH <smash_bz@suse.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Whiteboard| |CVSSv3.1:SUSE:CVE-2024-3684 | |3:8.2:(AV:N/AC:L/PR:N/UI:N/ | |S:U/C:N/I:L/A:H) -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1225826 Maintenance Automation <maint-coord+maintenance-robot@suse.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Priority|P5 - None |P3 - Medium -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1225826 https://bugzilla.suse.com/show_bug.cgi?id=1225826#c2 Stanislav Brabec <sbrabec@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CONFIRMED --- Comment #2 from Stanislav Brabec <sbrabec@suse.com> --- Checking the upstream, there is no fix. The upstream issue has no progress. Redhat Bugzilla has no progress yet. It looks either like a double free() or a memory corruption that could be possibly found by valgring. Is it serious enough to start a research? Note that we have no Modbus testing hardware. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1225826 https://bugzilla.suse.com/show_bug.cgi?id=1225826#c3 --- Comment #3 from Stanislav Brabec <sbrabec@suse.com> --- According to the upstream libmodbus-3.1.7 seems to be fixed. I propose to do a version update. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1225826 https://bugzilla.suse.com/show_bug.cgi?id=1225826#c4 Stanislav Brabec <sbrabec@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |FIXED Status|CONFIRMED |RESOLVED --- Comment #4 from Stanislav Brabec <sbrabec@suse.com> --- All affected repositories already contain libmodbus-3.1.10, which is not affected. -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com