Issue metadata
Sign in to add a comment
|
CrOS: Vulnerability reported in dev-libs/libpcre |
||||||||||||||||||||||
Issue descriptionAutomated analysis has detected that the following third party packages have had vulnerabilities publicly reported. NOTE: There may be several bugs listed below - in almost all cases, all bugs can be quickly addressed by upgrading to the latest version of the package. Package Name: dev-libs/libpcre Package Version: [cpe:/a:pcre:pcre:8.38] Advisory: CVE-2017-6004 Details: https://vomit.googleplex.com/advisory?id=CVE/CVE-2017-6004 CVSS severity score: 5/10.0 Confidence: high Description: The compile_bracket_matchingpath function in pcre_jit_compile.c in PCRE through 8.x before revision 1680 (e.g., the PHP 7.1.1 bundled version) allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted regular expression.
,
Mar 16 2017
,
Mar 16 2017
,
Mar 17 2017
,
Mar 18 2017
https://chromium-review.googlesource.com/c/457216/
,
Mar 21 2017
The following revision refers to this bug: https://chromium.googlesource.com/chromiumos/overlays/chromiumos-overlay/+/d4fbc2a8640ccef5fb9933c4f31da71b637465c1 commit d4fbc2a8640ccef5fb9933c4f31da71b637465c1 Author: Ben Chan <benchan@chromium.org> Date: Tue Mar 21 02:30:22 2017 dev-libs/libpcre: import upstream patch for missing else in JIT compiler This CL imports the following upstream patch that adds a missing else in the JIT compiler: https://vcs.pcre.org/pcre?view=revision&revision=1680 https://vcs.pcre.org/pcre/code/trunk/pcre_jit_compile.c?r1=1676&r2=1680&view=patch BUG= chromium:702138 TEST=Run paladin and release trybots. Change-Id: I6e222ed3e6d7210eab48a567e3e8367b40098cd3 Reviewed-on: https://chromium-review.googlesource.com/457216 Commit-Ready: Ben Chan <benchan@chromium.org> Tested-by: Ben Chan <benchan@chromium.org> Reviewed-by: Mike Frysinger <vapier@chromium.org> [add] https://crrev.com/d4fbc2a8640ccef5fb9933c4f31da71b637465c1/dev-libs/libpcre/libpcre.bashrc [add] https://crrev.com/d4fbc2a8640ccef5fb9933c4f31da71b637465c1/dev-libs/libpcre/files/libpcre-8.38-fix-missing-else-in-JIT-compiler.patch
,
Mar 21 2017
For the purpose of merging the fix into M58, we'll only need to merge https://chromium-review.googlesource.com/457216. Marking this bug as fixed for now to issue a merge request. A follow-up CL will upgrade libpcre to 8.40-r1, but that can be done in M59 instead.
,
Mar 22 2017
,
Mar 22 2017
Your change meets the bar and is auto-approved for M58. Please go ahead and merge the CL to branch 3029 manually. Please contact milestone owner if you have questions. Owners: amineer@(Android), cmasso@(iOS), bhthompson@(ChromeOS), govind@(Desktop) For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Mar 22 2017
The following revision refers to this bug: https://chromium.googlesource.com/chromiumos/overlays/chromiumos-overlay/+/5a1b0592596e3bb53f7fb9fd64ede85a9cb54476 commit 5a1b0592596e3bb53f7fb9fd64ede85a9cb54476 Author: Ben Chan <benchan@chromium.org> Date: Wed Mar 22 21:25:04 2017 dev-libs/libpcre: import upstream patch for missing else in JIT compiler This CL imports the following upstream patch that adds a missing else in the JIT compiler: https://vcs.pcre.org/pcre?view=revision&revision=1680 https://vcs.pcre.org/pcre/code/trunk/pcre_jit_compile.c?r1=1676&r2=1680&view=patch BUG= chromium:702138 TEST=Run paladin and release trybots. Change-Id: I6e222ed3e6d7210eab48a567e3e8367b40098cd3 Reviewed-on: https://chromium-review.googlesource.com/457216 Commit-Ready: Ben Chan <benchan@chromium.org> Tested-by: Ben Chan <benchan@chromium.org> Reviewed-by: Mike Frysinger <vapier@chromium.org> (cherry picked from commit d4fbc2a8640ccef5fb9933c4f31da71b637465c1) Reviewed-on: https://chromium-review.googlesource.com/457868 Commit-Queue: Ben Chan <benchan@chromium.org> [add] https://crrev.com/5a1b0592596e3bb53f7fb9fd64ede85a9cb54476/dev-libs/libpcre/libpcre.bashrc [add] https://crrev.com/5a1b0592596e3bb53f7fb9fd64ede85a9cb54476/dev-libs/libpcre/files/libpcre-8.38-fix-missing-else-in-JIT-compiler.patch
,
Mar 27 2017
This issue has been approved for a merge. Please merge the fix to any appropriate branches as soon as possible! If all merges have been completed, please remove any remaining Merge-Approved labels from this issue. Thanks for your time! To disable nags, add the Disable-Nags label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Mar 31 2017
This issue has been approved for a merge. Please merge the fix to any appropriate branches as soon as possible! If all merges have been completed, please remove any remaining Merge-Approved labels from this issue. Thanks for your time! To disable nags, add the Disable-Nags label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Mar 31 2017
Merged to M58
,
Apr 14 2017
The following revision refers to this bug: https://chromium.googlesource.com/chromiumos/overlays/chromiumos-overlay/+/1daf54bd3d51f0e5f4adf9221b67964657116cff commit 1daf54bd3d51f0e5f4adf9221b67964657116cff Author: Ben Chan <benchan@chromium.org> Date: Fri Apr 14 06:54:04 2017 dev-libs/libpcre: remove JIT compiler patch The patch is now included in dev-libs/libpcre 8.40-r1. BUG= chromium:702138 CQ-DEPEND=CL:457396 TEST=Run paladin and release trybots. Change-Id: Ifa98f3f0d1178936f6ca2cbb52972428fec89f7c Reviewed-on: https://chromium-review.googlesource.com/473507 Commit-Ready: Ben Chan <benchan@chromium.org> Tested-by: Ben Chan <benchan@chromium.org> Reviewed-by: Mike Frysinger <vapier@chromium.org> [delete] https://crrev.com/657d1c3b1bbdb06801acb2cd97cf9cf0dacea781/dev-libs/libpcre/libpcre.bashrc [delete] https://crrev.com/657d1c3b1bbdb06801acb2cd97cf9cf0dacea781/dev-libs/libpcre/files/libpcre-8.38-fix-missing-else-in-JIT-compiler.patch
,
Apr 14 2017
The following revision refers to this bug: https://chromium.googlesource.com/chromiumos/overlays/portage-stable/+/9a6b1f85268b6ea3caf56d414f4d869b186dc1c2 commit 9a6b1f85268b6ea3caf56d414f4d869b186dc1c2 Author: Ben Chan <benchan@chromium.org> Date: Fri Apr 14 06:54:04 2017 dev-libs/libprce: upgrade to 8.40-r1 This CL imports libprce 8.40-r1 from upstream gentoo, with KEYWORDS set to "*". BUG= chromium:702138 CQ-DEPEND=CL:473507 TEST=Run paladin and release trybots. Change-Id: Ic558669890051eb6ee5605226ef33828f7689c2f Reviewed-on: https://chromium-review.googlesource.com/457396 Commit-Ready: Ben Chan <benchan@chromium.org> Tested-by: Ben Chan <benchan@chromium.org> Reviewed-by: Mike Frysinger <vapier@chromium.org> [add] https://crrev.com/9a6b1f85268b6ea3caf56d414f4d869b186dc1c2/dev-libs/libpcre/files/libpcre-8.40-jit-else.patch [add] https://crrev.com/9a6b1f85268b6ea3caf56d414f4d869b186dc1c2/dev-libs/libpcre/files/libpcre-8.40-pcregrep-multiline-2.patch [delete] https://crrev.com/ef2fb7d88c358977cfbf409ea5ae58f214fb551a/dev-libs/libpcre/files/libpcre-8.38-ZDI-CAN-3542.patch [rename] https://crrev.com/9a6b1f85268b6ea3caf56d414f4d869b186dc1c2/dev-libs/libpcre/libpcre-8.40-r1.ebuild [add] https://crrev.com/9a6b1f85268b6ea3caf56d414f4d869b186dc1c2/dev-libs/libpcre/files/libpcre-8.40-pcregrep-multiline-1.patch [delete] https://crrev.com/ef2fb7d88c358977cfbf409ea5ae58f214fb551a/dev-libs/libpcre/files/libpcre-8.38-CVE-2016-1283.patch [modify] https://crrev.com/9a6b1f85268b6ea3caf56d414f4d869b186dc1c2/dev-libs/libpcre/Manifest
,
Jun 28 2017
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Jan 22 2018
|
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by tsepez@chromium.org
, Mar 16 2017Owner: benchan@chromium.org
Status: Assigned (was: Untriaged)