Bug 924851 (CVE-2015-2785) - VUL-0: CVE-2015-2785: byzanz: Out-of heap-based buffer write in GIF encoder
Summary: VUL-0: CVE-2015-2785: byzanz: Out-of heap-based buffer write in GIF encoder
Status: RESOLVED WONTFIX
Alias: CVE-2015-2785
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other All
: P3 - Medium : Normal
Target Milestone: ---
Assignee: openSUSE GNOME
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/115306/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2015-03-30 07:12 UTC by Marcus Meissner
Modified: 2024-07-25 14:06 UTC (History)
3 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2015-03-30 07:12:31 UTC 
via rh bug

The GIF encoder in Byzanz allows remote attackers to cause a denial of service
(out-of-bounds heap write and crash) or possibly execute arbitrary code via a
crafted Byzanz debug data recording (ByzanzRecording file) to the
byzanz-playback command.

(cve will be assigned soon)

References:
https://bugzilla.redhat.com/show_bug.cgi?id=852481
http://www.openwall.com/lists/oss-security/2015/02/06/11
http://seclists.org/oss-sec/2015/q1/1042
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=778261
Comment 1 Swamp Workflow Management 2015-03-30 22:00:40 UTC 
bugbot adjusting priority
Comment 2 Johannes Segitz 2017-08-04 12:00:53 UTC 
Upstream bug: https://bugzilla.gnome.org/show_bug.cgi?id=749674

No activity there, assuming that current version is still affected. Reproducer is not public
Comment 3 Camila Camargo de Matos 2024-07-25 14:05:52 UTC 
It seems like upstream will not be fixing this issue as per [0].

https://bugzilla.gnome.org/show_bug.cgi?id=749674#c1