Bugzilla – Bug 982014
VUL-0: CVE-2016-5104: libimobiledevice: Sockets listening on INADDR_ANY
Last modified: 2016-08-30 10:20:47 UTC
rh#1339988 It was found that libimobiledevice and libusbmuxd libraries accidentally bound a listening IPv4 TCP socket to INADDR_ANY instead of INADDR_LOOPBACK. Upstream patches: libusbmuxd: https://github.com/libimobiledevice/libusbmuxd/commit/4397b3376dc4e4cb1c991d0aed61ce6482614196 libimobiledevice: https://github.com/libimobiledevice/libimobiledevice/commit/df1f5c4d70d0c19ad40072f5246ca457e7f9849e CVE request: http://seclists.org/oss-sec/2016/q2/410 CVE assignment: http://seclists.org/oss-sec/2016/q2/415 References: https://bugzilla.redhat.com/show_bug.cgi?id=1339988 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5104 http://seclists.org/oss-sec/2016/q2/415
I'll prepare fixes for * openSUSE 13.2 * openSUSE Leap 42.1 * openSUSE Tumbleweed
open openSUSE 13.2 and Leap 42.1: Request: #398365 maintenance_incident: home:dimstar:boo982014/libimobiledevice.openSUSE_13.2_Update@0b1c1510121aba561a14b0d98823e4ca -> openSUSE:Maintenance (release in openSUSE:13.2:Update) maintenance_incident: home:dimstar:boo982014/libimobiledevice.openSUSE_Leap_42.1_Update@93eb0a1bc629d19f7498d50f22579f8a -> openSUSE:Maintenance (release in openSUSE:Leap:42.1:Update) maintenance_incident: home:dimstar:boo982014/libusbmuxd.openSUSE_13.2_Update@0e266636b87a659851f98e7021ca17ea -> openSUSE:Maintenance (release in openSUSE:13.2:Update) maintenance_incident: home:dimstar:boo982014/libusbmuxd.openSUSE_Leap_42.1_Update@1545d56dd624beda48af977b31da9054 -> openSUSE:Maintenance (release in openSUSE:Leap:42.1:Update) for Tumbleweed (via devel prj) SR#398366 for libimobiledevice SR#398367 for libusbmuxd => handing over to security for release and patch info
(remote code execution)
openSUSE-SU-2016:1526-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 982014 CVE References: CVE-2016-5104 Sources used: openSUSE Leap 42.1 (src): libimobiledevice-1.2.0-6.2, libusbmuxd-1.0.10-4.1 openSUSE 13.2 (src): libimobiledevice-1.1.6-2.3.1, libusbmuxd-1.0.9-2.3.1
sle11 is not using usbmuxd. all released.
SUSE-SU-2016:1639-1: An update that fixes one vulnerability is now available. Category: security (important) Bug References: 982014 CVE References: CVE-2016-5104 Sources used: SUSE Linux Enterprise Workstation Extension 12-SP1 (src): libimobiledevice-1.1.5-6.1 SUSE Linux Enterprise Workstation Extension 12 (src): libimobiledevice-1.1.5-6.1 SUSE Linux Enterprise Software Development Kit 12-SP1 (src): libimobiledevice-1.1.5-6.1, usbmuxd-1.0.8-12.1 SUSE Linux Enterprise Software Development Kit 12 (src): libimobiledevice-1.1.5-6.1, usbmuxd-1.0.8-12.1 SUSE Linux Enterprise Server 12-SP1 (src): libimobiledevice-1.1.5-6.1, usbmuxd-1.0.8-12.1 SUSE Linux Enterprise Server 12 (src): libimobiledevice-1.1.5-6.1, usbmuxd-1.0.8-12.1 SUSE Linux Enterprise Desktop 12-SP1 (src): libimobiledevice-1.1.5-6.1, usbmuxd-1.0.8-12.1 SUSE Linux Enterprise Desktop 12 (src): libimobiledevice-1.1.5-6.1, usbmuxd-1.0.8-12.1