[Bug 1079358] New: VUL-1: CVE-2018-3836 leptonica: gplotMakeOutput command injection
http://bugzilla.opensuse.org/show_bug.cgi?id=1079358 Bug ID: 1079358 Summary: VUL-1: CVE-2018-3836 leptonica: gplotMakeOutput command injection Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.3 Hardware: Other URL: https://smash.suse.de/issue/199482/ OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: lazy.kent@opensuse.org Reporter: kbabioch@suse.com QA Contact: security-team@suse.de Found By: Security Response Team Blocker: --- rh#1542005 An exploitable command injection vulnerability exists in the gplotMakeOutput function of Leptonica 1.74.4. A specially crafted gplot rootname argument can cause a command injection resulting in arbitrary code execution. An attacker can provide a malicious path as input to an application that passes attacker data to this function to trigger this vulnerability. External References: https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0516 References: https://bugzilla.redhat.com/show_bug.cgi?id=1542005 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-3836 -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1079358 Karol Babioch <kbabioch@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|VUL-1: CVE-2018-3836 |VUL-0: CVE-2018-3836: |leptonica: gplotMakeOutput |leptonica: gplotMakeOutput |command injection |command injection -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1079358 http://bugzilla.opensuse.org/show_bug.cgi?id=1079358#c1 Karol Babioch <kbabioch@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |IN_PROGRESS --- Comment #1 from Karol Babioch <kbabioch@suse.com> --- Fixed upstream in 1.75.1. Fixed for openSUSE:Factory already, SR for openSUSE:Leap:42.3: 573621 -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1079358 http://bugzilla.opensuse.org/show_bug.cgi?id=1079358#c2 --- Comment #2 from Karol Babioch <kbabioch@suse.com> --- https://build.opensuse.org/request/show/573621 -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1079358 http://bugzilla.opensuse.org/show_bug.cgi?id=1079358#c3 --- Comment #3 from Karol Babioch <kbabioch@suse.com> --- https://build.opensuse.org/request/show/573635 -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1079358 http://bugzilla.opensuse.org/show_bug.cgi?id=1079358#c8 Andreas Stieger <astieger@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |RESOLVED CC| |lazy.kent@opensuse.org Resolution|--- |FIXED Assignee|lazy.kent@opensuse.org |security-team@suse.de --- Comment #8 from Andreas Stieger <astieger@suse.com> --- release for Leap -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com