Bug 985685 (CVE-2015-8922) - VUL-1: CVE-2015-8922: bsdtar,libarchive: Null pointer access in 7z parser
Summary: VUL-1: CVE-2015-8922: bsdtar,libarchive: Null pointer access in 7z parser
Status: RESOLVED FIXED
Alias: CVE-2015-8922
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P4 - Low : Normal
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/170288/
Whiteboard: CVSSv2:SUSE:CVE-2015-8922:4.3:(AV:N/A...
Keywords:
Depends on:
Blocks:
 
Reported: 2016-06-20 14:42 UTC by Marcus Meissner
Modified: 2019-05-22 01:05 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
bsdtar-null-ptr.7z (52 bytes, application/octet-stream)
2016-06-20 14:44 UTC, Marcus Meissner 		Details
d094dc.patch (6.02 KB, patch)
2016-06-20 14:45 UTC, Marcus Meissner 		Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2016-06-20 14:42:46 UTC 
CVE-2015-8922

> https://github.com/libarchive/libarchive/issues/513
> Null pointer access in 7z parser

Use CVE-2015-8922.


References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8922
http://seclists.org/oss-sec/2016/q2/566
Comment 1 Marcus Meissner 2016-06-20 14:44:11 UTC 
Created attachment 681359 [details]
bsdtar-null-ptr.7z

QA REPRODUCER:

bsdtar xf bsdtar-null-ptr.7z

before:
segmentation fault

after:
no segfault
Comment 2 Marcus Meissner 2016-06-20 14:45:44 UTC 
Created attachment 681360 [details]
d094dc.patch

d094dc commit patch
Comment 3 Swamp Workflow Management 2016-06-20 22:01:52 UTC 
bugbot adjusting priority
Comment 4 Swamp Workflow Management 2016-07-29 12:10:38 UTC 
SUSE-SU-2016:1909-1: An update that fixes 20 vulnerabilities is now available.

Category: security (important)
Bug References: 984990,985609,985665,985669,985673,985675,985679,985682,985685,985688,985689,985697,985698,985700,985703,985704,985706,985826,985832,985835
CVE References: CVE-2015-8918,CVE-2015-8919,CVE-2015-8920,CVE-2015-8921,CVE-2015-8922,CVE-2015-8923,CVE-2015-8924,CVE-2015-8925,CVE-2015-8926,CVE-2015-8928,CVE-2015-8929,CVE-2015-8930,CVE-2015-8931,CVE-2015-8932,CVE-2015-8933,CVE-2015-8934,CVE-2016-4300,CVE-2016-4301,CVE-2016-4302,CVE-2016-4809
Sources used:
SUSE Linux Enterprise Software Development Kit 12-SP1 (src):    libarchive-3.1.2-22.1
SUSE Linux Enterprise Server 12-SP1 (src):    libarchive-3.1.2-22.1
SUSE Linux Enterprise Desktop 12-SP1 (src):    libarchive-3.1.2-22.1
Comment 5 Swamp Workflow Management 2016-08-11 15:15:12 UTC 
openSUSE-SU-2016:2036-1: An update that fixes 20 vulnerabilities is now available.

Category: security (important)
Bug References: 984990,985609,985665,985669,985673,985675,985679,985682,985685,985688,985689,985697,985698,985700,985703,985704,985706,985826,985832,985835
CVE References: CVE-2015-8918,CVE-2015-8919,CVE-2015-8920,CVE-2015-8921,CVE-2015-8922,CVE-2015-8923,CVE-2015-8924,CVE-2015-8925,CVE-2015-8926,CVE-2015-8928,CVE-2015-8929,CVE-2015-8930,CVE-2015-8931,CVE-2015-8932,CVE-2015-8933,CVE-2015-8934,CVE-2016-4300,CVE-2016-4301,CVE-2016-4302,CVE-2016-4809
Sources used:
openSUSE Leap 42.1 (src):    libarchive-3.1.2-13.2
Comment 6 Adrian Schröter 2018-10-10 13:32:14 UTC 
is done
Comment 7 Johannes Segitz 2018-10-11 08:13:25 UTC 
SUSE will not provide a fix for older products for this issue since the risk to our customers posed by this is negligible.