Ubuntu
fossil package

Fossil regression due CVE-2024-24795

  1. Jammy (22.04)
  2. Bug #2064509
Bug #2064509 reported by Leonidas S. Barbosa
258
This bug affects 1 person
Affects Status Importance Assigned to Milestone
fossil (Debian)
Fix Released
Unknown
fossil (Ubuntu)
Fix Released
Undecided
Unassigned
Xenial
Fix Released
Undecided
Unassigned
Bionic
Fix Released
Undecided
Unassigned
Focal
Fix Released
Undecided
Unassigned
Jammy
Fix Released
Undecided
Unassigned
Mantic
Fix Released
Undecided
Unassigned
Noble
Fix Released
Undecided
Unassigned

Bug Description

== SUMMARY ==
After CVE-2024-24795 reports were made that fossil stop to work properly
ref: https://bz.apache.org/bugzilla/show_bug.cgi?id=68905

== FIX ==
https://fossil-scm.org/home/info/f4ffefe708793b03

Leonidas S. Barbosa (leosilvab)
information type: Public → Public Security
Revision history for this message
Hans Joachim Desserud (hjd) wrote :

FWIW it looks like Debian has handled this issue (see the attached bug watch).

Bug Watch Updater (bug-watch-updater)
Changed in fossil (Debian):
status: Unknown → Fix Released
Revision history for this message
Ian Constantin (iconstantin) wrote :

Workaround note:

Fossil CGI documentation adds config option to restore legacy behavior in Apache: https://fossil-scm.org/home/doc/trunk/www/server/any/cgi.md

Revision history for this message
Ian Constantin (iconstantin) wrote :

Fix commit: https://fossil-scm.org/home/info/a8e33fb161f45b65

(For this issue, a subset of the changes to src/http.c are the fix)

Followed by:

https://fossil-scm.org/home/info/71919ad1b542832c

and

https://fossil-scm.org/home/info/f4ffefe708793b03

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package fossil - 1:2.22-1ubuntu0.1

---------------
fossil (1:2.22-1ubuntu0.1) mantic-security; urgency=medium

  * SECURITY REGRESSION: break due to apache2 security update (LP: #2064509)
    - debian/patches/missing-content-length-fix-*.patch: Update HTTP reply
      parser to deal with a missing Content-Length header.

 -- Ian Constantin <email address hidden> Wed, 08 May 2024 14:46:57 +0300

Changed in fossil (Ubuntu Mantic):
status: New → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package fossil - 1:2.18-1ubuntu0.1

---------------
fossil (1:2.18-1ubuntu0.1) jammy-security; urgency=medium

  * SECURITY REGRESSION: break due to apache2 security update (LP: #2064509)
    - debian/patches/missing-content-length-fix-*.patch: Update HTTP reply
      parser to deal with a missing Content-Length header.

 -- Ian Constantin <email address hidden> Wed, 08 May 2024 14:47:22 +0300

Changed in fossil (Ubuntu Jammy):
status: New → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package fossil - 1:2.10-1ubuntu0.1

---------------
fossil (1:2.10-1ubuntu0.1) focal-security; urgency=medium

  * SECURITY REGRESSION: break due to apache2 security update (LP: #2064509)
    - debian/patches/missing-content-length-fix-*.patch: Update HTTP reply
      parser to deal with a missing Content-Length header.

 -- Ian Constantin <email address hidden> Wed, 08 May 2024 14:47:38 +0300

Changed in fossil (Ubuntu Focal):
status: New → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package fossil - 1:2.23-1ubuntu0.1

---------------
fossil (1:2.23-1ubuntu0.1) noble-security; urgency=medium

  * SECURITY REGRESSION: break due to apache2 security update (LP: #2064509)
    - debian/patches/missing-content-length-fix-*.patch: Update HTTP reply
      parser to deal with a missing Content-Length header.

 -- Ian Constantin <email address hidden> Wed, 08 May 2024 14:48:59 +0300

Changed in fossil (Ubuntu Noble):
status: New → Fix Released
Revision history for this message
Ian Constantin (iconstantin) wrote :

Xenial and Bionic also addressed through ESM:

Ubuntu 18.04 LTS
   fossil 1:2.5-1ubuntu0.1~

Ubuntu 16.04 LTS
   fossil 1:1.33-3ubuntu0.1~esm1

Revision history for this message
Ian Constantin (iconstantin) wrote :

USN for reference: https://ubuntu.com/security/notices/USN-6770-1

Changed in fossil (Ubuntu Bionic):
status: New → Fix Released
Changed in fossil (Ubuntu Xenial):
status: New → Fix Released
Changed in fossil (Ubuntu):
status: New → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.