985700 – (CVE-2015-8930) VUL-1: CVE-2015-8930: bsdtar,libarchive: Endless loop in ISO parser

Bug 985700 (CVE-2015-8930) - VUL-1: CVE-2015-8930: bsdtar,libarchive: Endless loop in ISO parser

Summary: VUL-1: CVE-2015-8930: bsdtar,libarchive: Endless loop in ISO parser

Status:	RESOLVED FIXED

Alias:	CVE-2015-8930

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P4 - Low Severity: Normal
Target Milestone:	---
Assignee:	Adrian Schröter
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/170301/
Whiteboard:	CVSSv2:SUSE:CVE-2015-8930:4.3:(AV:N/...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2016-06-20 15:22 UTC by Marcus Meissner
Modified:	2022-05-10 10:32 UTC (History)
CC List:	3 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
hang.iso (50.06 KB, application/octet-stream) 2016-06-20 15:23 UTC, Marcus Meissner	Details
39fc593.patch (2.80 KB, patch) 2016-06-20 15:24 UTC, Marcus Meissner	Details \| Diff
01cfbca.patch (1.77 KB, patch) 2016-06-20 15:25 UTC, Marcus Meissner	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Marcus Meissner 2016-06-20 15:22:29 UTC

CVE-2015-8930

> https://github.com/libarchive/libarchive/issues/522
> Endless loop in ISO parser

Use CVE-2015-8930.


References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8930
http://seclists.org/oss-sec/2016/q2/566

Comment 1 Marcus Meissner 2016-06-20 15:23:32 UTC

Created attachment 681373 [details]
hang.iso

QA REPRODUCER:

bsdtar xf hang.iso

before: hangs forever
after: should not hang

Comment 2 Marcus Meissner 2016-06-20 15:24:44 UTC

Created attachment 681374 [details]
39fc593.patch

first patch fixing it, commit 39fc593

Comment 3 Marcus Meissner 2016-06-20 15:25:32 UTC

Created attachment 681375 [details]
01cfbca.patch

second commit 01cfbca

Comment 4 Swamp Workflow Management 2016-06-20 22:02:56 UTC

bugbot adjusting priority

Comment 5 Swamp Workflow Management 2016-07-29 12:11:27 UTC

SUSE-SU-2016:1909-1: An update that fixes 20 vulnerabilities is now available.

Category: security (important)
Bug References: 984990,985609,985665,985669,985673,985675,985679,985682,985685,985688,985689,985697,985698,985700,985703,985704,985706,985826,985832,985835
CVE References: CVE-2015-8918,CVE-2015-8919,CVE-2015-8920,CVE-2015-8921,CVE-2015-8922,CVE-2015-8923,CVE-2015-8924,CVE-2015-8925,CVE-2015-8926,CVE-2015-8928,CVE-2015-8929,CVE-2015-8930,CVE-2015-8931,CVE-2015-8932,CVE-2015-8933,CVE-2015-8934,CVE-2016-4300,CVE-2016-4301,CVE-2016-4302,CVE-2016-4809
Sources used:
SUSE Linux Enterprise Software Development Kit 12-SP1 (src):    libarchive-3.1.2-22.1
SUSE Linux Enterprise Server 12-SP1 (src):    libarchive-3.1.2-22.1
SUSE Linux Enterprise Desktop 12-SP1 (src):    libarchive-3.1.2-22.1

Comment 6 Swamp Workflow Management 2016-08-11 15:15:56 UTC

openSUSE-SU-2016:2036-1: An update that fixes 20 vulnerabilities is now available.

Category: security (important)
Bug References: 984990,985609,985665,985669,985673,985675,985679,985682,985685,985688,985689,985697,985698,985700,985703,985704,985706,985826,985832,985835
CVE References: CVE-2015-8918,CVE-2015-8919,CVE-2015-8920,CVE-2015-8921,CVE-2015-8922,CVE-2015-8923,CVE-2015-8924,CVE-2015-8925,CVE-2015-8926,CVE-2015-8928,CVE-2015-8929,CVE-2015-8930,CVE-2015-8931,CVE-2015-8932,CVE-2015-8933,CVE-2015-8934,CVE-2016-4300,CVE-2016-4301,CVE-2016-4302,CVE-2016-4809
Sources used:
openSUSE Leap 42.1 (src):    libarchive-3.1.2-13.2

Comment 7 Adrian Schröter 2018-10-10 13:35:35 UTC

already done

Comment 11 Carlos López 2022-05-10 10:32:22 UTC

Could not reproduce on bsdtar, and libarchive is done. Closing.