Your message dated Fri, 08 Dec 2017 16:49:16 +0000 with message-id <e1enlps-0006vy...@fasolo.debian.org> and subject line Bug#882032: fixed in optipng 0.7.6-1.1 has caused the Debian Bug report #882032, regarding optipng: CVE-2017-1000229: Integer Overflow Bug while parsing TIFF input file to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 882032: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882032 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: optipng Version: 0.7.6-1 Severity: important Tags: security upstream Forwarded: https://sourceforge.net/p/optipng/bugs/65/ Hi, the following vulnerability was published for optipng. CVE-2017-1000229[0]: | Integer overflow bug in function minitiff_read_info() of optipng 0.7.6 | allows an attacker to remotely execute code or cause denial of | service. With the poc.tiff on upstream bug: ==9473== Memcheck, a memory error detector ==9473== Copyright (C) 2002-2017, and GNU GPL'd, by Julian Seward et al. ==9473== Using Valgrind-3.13.0 and LibVEX; rerun with -h for copyright info ==9473== Command: optipng poc.tiff ==9473== ** Processing: poc.tiff ==9473== Invalid write of size 4 ==9473== at 0x109C53: read_ulong_values (tiffread.c:131) ==9473== by 0x117504: minitiff_read_info (tiffread.c:358) ==9473== by 0x114B07: pngx_read_tiff (pngxrtif.c:85) ==9473== by 0x11272C: pngx_read_image (pngxread.c:130) ==9473== by 0x10CABF: opng_read_file (optim.c:939) ==9473== by 0x10DE99: opng_optimize_impl (optim.c:1503) ==9473== by 0x10EC28: opng_optimize (optim.c:1853) ==9473== by 0x10A30E: process_files (optipng.c:941) ==9473== by 0x10A30E: main (optipng.c:975) ==9473== Address 0x4aa56cc is 0 bytes after a block of size 4 alloc'd ==9473== at 0x482E2BC: malloc (vg_replace_malloc.c:299) ==9473== by 0x1174CA: minitiff_read_info (tiffread.c:353) ==9473== by 0x114B07: pngx_read_tiff (pngxrtif.c:85) ==9473== by 0x11272C: pngx_read_image (pngxread.c:130) ==9473== by 0x10CABF: opng_read_file (optim.c:939) ==9473== by 0x10DE99: opng_optimize_impl (optim.c:1503) ==9473== by 0x10EC28: opng_optimize (optim.c:1853) ==9473== by 0x10A30E: process_files (optipng.c:941) ==9473== by 0x10A30E: main (optipng.c:975) ==9473== Error: Error reading TIFF file ** Status report 1 file(s) have been processed. 1 error(s) have been encountered. ==9473== ==9473== HEAP SUMMARY: ==9473== in use at exit: 4 bytes in 1 blocks ==9473== total heap usage: 5 allocs, 4 frees, 5,600 bytes allocated ==9473== ==9473== LEAK SUMMARY: ==9473== definitely lost: 4 bytes in 1 blocks ==9473== indirectly lost: 0 bytes in 0 blocks ==9473== possibly lost: 0 bytes in 0 blocks ==9473== still reachable: 0 bytes in 0 blocks ==9473== suppressed: 0 bytes in 0 blocks ==9473== Rerun with --leak-check=full to see details of leaked memory ==9473== ==9473== For counts of detected and suppressed errors, rerun with: -v ==9473== ERROR SUMMARY: 262143 errors from 1 contexts (suppressed: 0 from 0) If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2017-1000229 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000229 Please adjust the affected versions in the BTS as needed. Regards, Salvatore
--- End Message ---
--- Begin Message ---Source: optipng Source-Version: 0.7.6-1.1 We believe that the bug you reported is fixed in the latest version of optipng, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 882...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Salvatore Bonaccorso <car...@debian.org> (supplier of updated optipng package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 07 Dec 2017 20:43:29 +0100 Source: optipng Binary: optipng Architecture: source Version: 0.7.6-1.1 Distribution: unstable Urgency: medium Maintainer: Debian PhotoTools Maintainers <pkg-phototools-devel@lists.alioth.debian.org> Changed-By: Salvatore Bonaccorso <car...@debian.org> Closes: 878839 882032 Description: optipng - advanced PNG (Portable Network Graphics) optimizer Changes: optipng (0.7.6-1.1) unstable; urgency=medium . * Non-maintainer upload. * Prevent integer overflow in minitiff_read_info() (CVE-2017-1000229) (Closes: #882032) * gifread: Detect indirect circular dependencies in LZW tables (CVE-2017-16938) (Closes: #878839) Checksums-Sha1: dc1d3f19c6d2147ff532985d96244d4ef2ceb502 2163 optipng_0.7.6-1.1.dsc 2a77c95caedb65768d82bbde91ae380acc3aaed3 5952 optipng_0.7.6-1.1.debian.tar.bz2 Checksums-Sha256: 1070de5feb0c9862d0c3a5e01ce8669d005a9eebddd95717cc78e8cdb99aeac5 2163 optipng_0.7.6-1.1.dsc eef445316b92630920839a0f7249f1a041bafaa95e18c3188eabb84f41d52851 5952 optipng_0.7.6-1.1.debian.tar.bz2 Files: 73c0d43aa7a1958dcab983509e970ced 2163 graphics optional optipng_0.7.6-1.1.dsc 36ea296847cf7de6c70ba4675f52f6b7 5952 graphics optional optipng_0.7.6-1.1.debian.tar.bz2 -----BEGIN PGP SIGNATURE----- iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlopnpFfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89Ei0EP/jdwO0bMCmWjJ5quu2OhcN0KNzPNWdSa LrrkOgS4VffML7aFO2iZD9XMM41KkpVxvAJQFoZ5yvxVQr7LFmzyzS4yDhYzM5JW UxEaMMtY9ZiTkCBqyYsaX5GefeYtM7xtbnUcXFSH5tSJEPRXhsR2pWXZLlWYQ2yp qAkXX0gAOkBesNIVkBrGBGAhVyr9lQaaczQrabAl/bC7Btk7bsh8vuhRfZvqUqpT wUJ3j6d3iOLYCpQctZDP1W02TAU8z08Ql4bSuAHuByt5dLjW4jN3cb8UbaI5EAKG /oh+NjDSQXMLX9AsAeN4rFnGluPg4uniuT5LBvRJ+swhzFItFXiDZa6zwmbi9vA2 mAQGoQO6u4Et3ZsW85BzNajmZxjajdr0PD4uVQmUxuS0n8gDe5KMv/Lm9kUevt5r Pu9DmmTwx6FzaAYYDmo2mPO4Q3ig3n1JKUELrbHr8Q+I2wGMc3yYZSfCsnquKV0h u68p8vX/6wAL3Bcvr6ww3hclr+Sf1k3BoiIdD/EBibyqafCCnrfteFOznq2eXQUR j/J80YUeP3rus6v+GmYpoIuZGntfzSCO/TjV//ja1MJqJDiQJCIqynU4zw2DMebC fc7cMaUPTyvkcB9LV1JbuAko/mASVD7leYWP4lm3VmLev7Gokxm3cVaxg9AGughy G3WV+H6e+oLo =WRGJ -----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________ Pkg-phototools-devel mailing list Pkg-phototools-devel@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-phototools-devel
