Bug 891489 (CVE-2014-3158) - VUL-0: CVE-2014-3158: ppp: integer overflow in option parsing
Summary: VUL-0: CVE-2014-3158: ppp: integer overflow in option parsing
Status: RESOLVED FIXED
Alias: CVE-2014-3158
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Deadline: 2014-09-04
Assignee: Security Team bot
QA Contact: Security Team bot
URL:
Whiteboard: maint:released:sle11-sp1:58682
Keywords:
Depends on:
Blocks:
 
Reported: 2014-08-12 08:14 UTC by Alexander Bergmann
Modified: 2014-09-16 13:07 UTC (History)
3 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Alexander Bergmann 2014-08-12 08:14:10 UTC 
List:       linux-ppp
Subject:    ppp-2.4.7 released
From:       Paul Mackerras <paulus () samba ! org>
Date:       2014-08-10 5:49:34

I have just released version 2.4.7 of the ppp package.  It's at the
usual place, ftp://ftp.samba.org/pub/ppp/.

The main reason for the release is to fix a potential security
vulnerability that has been discovered.  The vulnerability may enable
an unprivileged attacker to access privileged options, though I am not
aware of any complete working exploit.  This vulnerability has a CVE
id, CVE-2014-3158.

Paul.

-----------------------

Upstream commit:

https://github.com/paulusmack/ppp/commit/7658e8257183f062dc01f87969c140707c7e52cb
Comment 1 Swamp Workflow Management 2014-08-12 22:00:12 UTC 
bugbot adjusting priority
Comment 2 Swamp Workflow Management 2014-08-21 08:57:50 UTC 
An update workflow for this issue was started.
This issue was rated as moderate.
Please submit fixed packages until 2014-09-04.
When done, reassign the bug to security-team@suse.de.
https://swamp.suse.de/webswamp/wf/58681
Comment 3 SMASH SMASH 2014-08-21 09:00:14 UTC 
Affected packages:

SLE-10-SP3-TERADATA: ppp
SLE-11-SP1: ppp
SLE-11-SP3: ppp
Comment 6 Reinhard Max 2014-08-21 09:47:41 UTC 
OK, and is SLE-10-SP3-TERADATA the same as SLE-10-SP3, as I did not get a TERADATA branch?
Comment 7 Alexander Bergmann 2014-08-21 10:10:38 UTC 
Yes (as far as I understood the magic), just send your submission to:

SUSE:SLE-10-SP3:Update:Test / openssl

That submission would also be used if we would do an SLE-10-SP3-LTSS and SLE-10-SP4-LTSS update.
Comment 8 Reinhard Max 2014-08-21 12:13:01 UTC 
OK, submitted to SLE-11-SP1 and SLE-10-SP3.
Comment 11 Bernhard Wiedemann 2014-08-21 14:00:37 UTC 
This is an autogenerated message for OBS integration:
This bug (891489) was mentioned in
https://build.opensuse.org/request/show/245614 Factory / ppp
Comment 13 Reinhard Max 2014-08-25 11:53:27 UTC 
Oh - I meant to resubmit SLE-10-SP3 and SLE-11-SP1 last Thursday, but accidentally resubmitted SLE10 twice. Will resubmit SLE11 in a minute...
Comment 15 Marcus Meissner 2014-09-03 16:34:17 UTC 
What about openSUSE 12.3, 13.1, Factory?
Comment 16 Reinhard Max 2014-09-03 16:54:21 UTC 
For Factory, see comment #11.

As comment #3 doesn't mention 12.3 and 13.1, I thought the bug wasn't considered to be serious enough to also update openSUSE.
Comment 17 Swamp Workflow Management 2014-09-03 21:04:25 UTC 
SUSE-SU-2014:1088-1: An update that fixes one vulnerability is now available.

Category: security (moderate)
Bug References: 891489
CVE References: CVE-2014-3158
Sources used:
SUSE Linux Enterprise Software Development Kit 11 SP3 (src):    ppp-2.4.5.git-2.29.1
SUSE Linux Enterprise Server 11 SP3 for VMware (src):    ppp-2.4.5.git-2.29.1
SUSE Linux Enterprise Server 11 SP3 (src):    ppp-2.4.5.git-2.29.1
SUSE Linux Enterprise Desktop 11 SP3 (src):    ppp-2.4.5.git-2.29.1
Comment 19 Marcus Meissner 2014-09-08 13:53:04 UTC 
so can you please submit fixes for openSUSE too? thanks!: )
Comment 20 Reinhard Max 2014-09-09 13:51:36 UTC 
Done.
Comment 21 Bernhard Wiedemann 2014-09-09 14:00:12 UTC 
This is an autogenerated message for OBS integration:
This bug (891489) was mentioned in
https://build.opensuse.org/request/show/248164 13.1+12.3 / ppp
Comment 22 Marcus Meissner 2014-09-16 12:43:59 UTC 
released
Comment 23 Swamp Workflow Management 2014-09-16 13:07:27 UTC 
openSUSE-SU-2014:1135-1: An update that fixes one vulnerability is now available.

Category: security (moderate)
Bug References: 891489
CVE References: CVE-2014-3158
Sources used:
openSUSE 13.1 (src):    ppp-2.4.5-20.4.1
openSUSE 12.3 (src):    ppp-2.4.5-15.4.1