StarlingX

CVE-2017-12652: libpng: does not check length of chunks

Bug #1902993 reported by Ghada Khalil on 2020-11-05

256

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	StarlingX	Fix Released	High	Michel Thebeau [WIND]

Bug Description

CVE-2017-12652: libpng: does not check length of chunks

CVSSv2: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)

Description:
libpng before 1.6.32 does not properly check the length of chunks against the user limit.
Up to (excluding) 1.6.32

References:
https://nvd.nist.gov/vuln/detail/CVE-2017-12652
https://access.redhat.com/errata/RHSA-2020:3901
https://lists.centos.org/pipermail/centos-cr-announce/2020-October/012757.html

Required package version:
libpng-1.5.13-8.el7

Tags:

CVE References

2017-12652

Revision history for this message

Ghada Khalil (gkhalil) wrote on 2020-11-05:

Applicable to stx master (aka stx.5.0) as well as stx.4.0.
The process is to address the CVE in stx master first and then cherrypick to the appropriate release branches after some soak time.

information type:	Public → Public Security
Changed in starlingx:
importance:	Undecided → Medium
status:	New → Triaged
tags:	added: stx.4.0 stx.5.0 stx.security
Changed in starlingx:
assignee:	nobody → Michel Thebeau [WIND] (mthebeau)

Ghada Khalil (gkhalil) on 2020-11-05

Changed in starlingx:
importance:	Medium → High

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2020-11-05: Fix proposed to tools (master)

Fix proposed to branch: master
Review: https://review.opendev.org/761682

Changed in starlingx:
status:	Triaged → In Progress

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2020-11-05:

Fix proposed to branch: master
Review: https://review.opendev.org/761685

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2020-11-05: Change abandoned on tools (master)

Change abandoned by Michel Thebeau (WIND) (<email address hidden>) on branch: master
Review: https://review.opendev.org/761685

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2020-11-05:

Change abandoned by Michel Thebeau (WIND) (<email address hidden>) on branch: master
Review: https://review.opendev.org/761682

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2020-11-06: Fix proposed to tools (master)

Fix proposed to branch: master
Review: https://review.opendev.org/761689

Revision history for this message

Michel Thebeau [WIND] (mthebeau) wrote on 2020-11-27:

Merged as: https://review.opendev.org/plugins/gitiles/starlingx/tools/+/596d66bc50dc693f556e2dd99c79fcfb7306580a

Revision history for this message

Michel Thebeau [WIND] (mthebeau) wrote on 2020-11-27:

Reviewed: https://review.opendev.org/c/starlingx/tools/+/761689/
Committed: https://opendev.org/starlingx/tools/commit/596d66bc50dc693f556e2dd99c79fcfb7306580a
Submitter: Zuul
Branch: master

commit 596d66bc50dc693f556e2dd99c79fcfb7306580a
Author: Michel Thebeau <email address hidden>
Date: Mon Nov 16 16:12:48 2020 -0500

libpng: CVE-2017-12652: omits check of chunk len

libpng does not properly check the length of chunks against the user
limit.

    Fix is provided by Centos RPMs:
    libpng-1.5.13-8.el7.x86_64.rpm
    libpng-devel-1.5.13-8.el7.x86_64.rpm

Test:
Build. Deploy AIO-SX.

    Closes-Bug: 1902993
    Change-Id: Id712d5416bafe331aa4299540c693585e5e181a2
    Signed-off-by: Michel Thebeau <email address hidden>

Changed in starlingx:
status:	In Progress → Fix Released

Revision history for this message

Michel Thebeau [WIND] (mthebeau) wrote on 2020-11-27:

Fix proposed to branch: r/stx.4.0
Review: https://review.opendev.org/c/starlingx/tools/+/764496

Revision history for this message

Michel Thebeau [WIND] (mthebeau) wrote on 2020-12-02:

#10

Reviewed: https://review.opendev.org/c/starlingx/tools/+/764496
Committed: https://review.opendev.org/plugins/gitiles/starlingx/tools/+/ca0368edc04f8e143402c22eaf7d22d622049d20
Submitter: Zuul
Branch: r/stx.4.0

commit ca0368edc04f8e143402c22eaf7d22d622049d20
Author: Michel Thebeau <email address hidden>
Date: Mon Nov 16 16:12:48 2020 -0500

libpng: CVE-2017-12652: omits check of chunk len

libpng does not properly check the length of chunks against the user
limit.

    Fix is provided by Centos RPMs:
    libpng-1.5.13-8.el7.x86_64.rpm
    libpng-devel-1.5.13-8.el7.x86_64.rpm

Test:
Build. Deploy AIO-SX.

    Closes-Bug: 1902993
    Change-Id: Id712d5416bafe331aa4299540c693585e5e181a2
    Signed-off-by: Michel Thebeau <email address hidden>
    (cherry picked from commit 596d66bc50dc693f556e2dd99c79fcfb7306580a)

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.