Bug 878349 (CVE-2014-2978) - VUL-0: CVE-2014-2978: DirectFB: remote out-of-bounds write vulnerability
Summary: VUL-0: CVE-2014-2978: DirectFB: remote out-of-bounds write vulnerability
Status: RESOLVED FIXED
Alias: CVE-2014-2978
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Major
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/98852/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2014-05-16 14:19 UTC by Johannes Segitz
Modified: 2016-04-27 19:29 UTC (History)
3 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
patch proposed upstream (969 bytes, patch)
2015-03-24 08:51 UTC, Petr Gajdos 		Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Johannes Segitz 2014-05-16 14:19:33 UTC 
CVE-2014-2978

DirectFB is prone to an out-of-bound write vulnerability since version 1.4.4.

The vulnerability can be triggered remotely without authentication through Voodoo interface (network layer of DirectFB).

openSUSE 12.3: 1.6.2
openSUSE 13.1: 1.6.3
openSUSE Factory: 1.7.4
are affected

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2978
http://seclists.org/oss-sec/2014/q2/323
http://mail.directfb.org/pipermail/directfb-dev/2014-March/006805.html
https://bugzilla.redhat.com/show_bug.cgi?id=1098526
Comment 1 Swamp Workflow Management 2014-05-16 22:00:28 UTC 
bugbot adjusting priority
Comment 2 Petr Gajdos 2014-05-19 08:33:09 UTC 
http://mail.directfb.org/pipermail/directfb-dev/2014-April/006813.html

No upstream commit found so far.
Comment 3 Petr Gajdos 2015-03-24 08:51:48 UTC 
Created attachment 628305 [details]
patch proposed upstream
Comment 4 Bernhard Wiedemann 2015-03-30 07:00:18 UTC 
This is an autogenerated message for OBS integration:
This bug (878349) was mentioned in
https://build.opensuse.org/request/show/293665 Factory / DirectFB
Comment 5 Petr Gajdos 2015-04-08 07:02:52 UTC 
Upstream still do not react. I have sent proposed patches to them on 2015-03-30

http://mail.directfb.org/pipermail/directfb-dev/2015-March/006879.html

but no reply.

Johannes, could you please review patches so I can submit them to older products?
Comment 7 Petr Gajdos 2015-04-23 09:08:18 UTC 
Packages submitted.
Comment 10 Swamp Workflow Management 2015-04-30 13:05:15 UTC 
openSUSE-SU-2015:0807-1: An update that fixes two vulnerabilities is now available.

Category: security (important)
Bug References: 878345,878349
CVE References: CVE-2014-2977,CVE-2014-2978
Sources used:
openSUSE 13.2 (src):    DirectFB-1.7.5-3.3.1
openSUSE 13.1 (src):    DirectFB-1.6.3-4.3.1
Comment 11 Swamp Workflow Management 2015-05-08 13:06:08 UTC 
SUSE-SU-2015:0839-1: An update that fixes two vulnerabilities is now available.

Category: security (important)
Bug References: 878345,878349
CVE References: CVE-2014-2977,CVE-2014-2978
Sources used:
SUSE Linux Enterprise Workstation Extension 12 (src):    DirectFB-1.7.1-4.1
SUSE Linux Enterprise Software Development Kit 12 (src):    DirectFB-1.7.1-4.1
SUSE Linux Enterprise Server 12 (src):    DirectFB-1.7.1-4.1
SUSE Linux Enterprise Desktop 12 (src):    DirectFB-1.7.1-4.1
Comment 12 Marcus Meissner 2016-03-23 08:14:30 UTC 
all done i think