SB2020011631 - Out-of-bounds write in e2fsprogs (Alpine package)
Published: January 16, 2020
Security Bulletin ID
SB2020011631
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Out-of-bounds write (CVE-ID: CVE-2019-5188)
The vulnerability allows a local user to compromise vulnerable system.
The vulnerability exists due to a boundary error when processing untrusted input in the directory rehashing functionality in "rehash.c" within the "mutate_name()" function. A local user can use a specially crafted ext4 directory, trigger out-of-bounds write on the stack and execute arbitrary code on the target system.
Remediation
Install update from vendor's website.
References
- https://git.alpinelinux.org/aports/commit/?id=642db3215265db1cbf49b25d942ef9d11d3c410f
- https://git.alpinelinux.org/aports/commit/?id=2ed804fc262d008a2558bd3ca7287479e85929ba
- https://git.alpinelinux.org/aports/commit/?id=18b5cab25223debddf802a6309b15db6947dba96
- https://git.alpinelinux.org/aports/commit/?id=948fd324de9029f91e5a736dd623b8f1390256e5
- https://git.alpinelinux.org/aports/commit/?id=961349519affeaa193ce9d638736f4482ff4576a
- https://git.alpinelinux.org/aports/commit/?id=00430c951fbd0bdf2423cd019cb974e2eb19361d