Bug 57699 - libheif: Multiple issues (5.0)
Summary: libheif: Multiple issues (5.0)
Status: CLOSED FIXED
Alias: None
Product: UCS
Classification: Unclassified
Component: Security updates
Version: UCS 5.0
Hardware: All Linux
: P3 normal
Target Milestone: UCS 5.0-9-errata
Assignee: Quality Assurance
QA Contact: Felix Botner
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2024-10-28 10:14 CET by Quality Assurance
Modified: 2024-10-30 15:12 CET (History)
0 users

See Also:
What kind of report is it?: Security Issue
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Customer ID:
Max CVSS v3 score: 8.1 (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N) NVD

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Quality Assurance univentionstaff 2024-10-28 10:14:21 CET 
New Debian libheif 1.3.2-2+deb10u2 fixes:
This update addresses the following issues:
* 
1.3.2-2+deb10u2 (Tue, 22 Oct 2024 16:03:05 -0700)
* Non-maintainer upload by the Debian ELTS team.
* CVE-2024-41311: Prevent a potential out-of-bounds read vulnerability caused by insufficient checks in ImageOverlay::parse(), where an overlay image with forged offsets could have led to undefined behaviour.
Comment 1 Quality Assurance univentionstaff 2024-10-28 11:00:09 CET 
--- mirror/ftp/pool/main/libh/libheif/libheif_1.3.2-2~deb10u1.dsc
+++ apt/ucs_5.0-0-errata5.0-9/source/libheif_1.3.2-2+deb10u2.dsc
@@ -1,3 +1,10 @@
+1.3.2-2+deb10u2 [Tue, 22 Oct 2024 16:03:05 -0700] Chris Lamb <lamby@debian.org>:
+
+  * Non-maintainer upload by the Debian ELTS team.
+  * CVE-2024-41311: Prevent a potential out-of-bounds read vulnerability
+    caused by insufficient checks in ImageOverlay::parse(), where an overlay
+    image with forged offsets could have led to undefined behaviour.
+
 1.3.2-2~deb10u1 [Fri, 07 Jun 2019 20:19:26 +0200] Salvatore Bonaccorso <carnil@debian.org>:
 
   * Non-maintainer upload.

<http://piuparts.knut.univention.de/5.0-9/#3429865912693482585>
Comment 2 Felix Botner univentionstaff 2024-10-29 09:33:00 CET 
OK: bug
OK: yaml
OK: announce_errata
OK: patch
~OK: piuparts
  dbgsym

5.0-9 5170089c43ed79327254bdced9599cd32d0aa126
 doc/errata/staging/libheif.yaml             | 2 +-
 doc/errata/staging/libsepol.yaml            | 2 +-
 doc/errata/staging/openjdk-11.yaml          | 9 +++++----
 doc/errata/staging/python-cryptography.yaml | 2 +-
 4 files changed, 8 insertions(+), 7 deletions(-)