Vulnerability-Lookup

CNVD-2018-05755

Vulnerability from cnvd - Published: 2018-03-20

Title

Sean Barrett stb_vorbis缓冲区溢出漏洞

Description

Sean Barrett stb_vorbis是一款基于C++的单文件公共域库。 Sean Barrett stb_vorbis 1.12及之前版本中全部的vorbis decoding路径存在缓冲区溢出漏洞。攻击者可借助特制的Ogg Vorbis文件利用该漏洞破坏内存，造成拒绝服务，执行主机程序。

Severity

中

Patch Name

Sean Barrett stb_vorbis缓冲区溢出漏洞的补丁

Patch Description

Sean Barrett stb_vorbis是一款基于C++的单文件公共域库。 Sean Barrett stb_vorbis 1.12及之前版本中全部的vorbis decoding路径存在缓冲区溢出漏洞。攻击者可借助特制的Ogg Vorbis文件利用该漏洞破坏内存，造成拒绝服务，执行主机程序。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://github.com/nothings/stb/commit/244d83bc3d859293f55812d48b3db168e581f6ab

Reference

https://github.com/nothings/stb/commit/244d83bc3d859293f55812d48b3db168e581f6ab

Impacted products

Name
Sean Barrett stb_vorbis <=1.12

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-1000050"
    }
  },
  "description": "Sean Barrett stb_vorbis\u662f\u4e00\u6b3e\u57fa\u4e8eC++\u7684\u5355\u6587\u4ef6\u516c\u5171\u57df\u5e93\u3002\r\n\r\nSean Barrett stb_vorbis 1.12\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5168\u90e8\u7684vorbis decoding\u8def\u5f84\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684Ogg Vorbis\u6587\u4ef6\u5229\u7528\u8be5\u6f0f\u6d1e\u7834\u574f\u5185\u5b58\uff0c\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff0c\u6267\u884c\u4e3b\u673a\u7a0b\u5e8f\u3002",
  "discovererName": "unknow",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://github.com/nothings/stb/commit/244d83bc3d859293f55812d48b3db168e581f6ab",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-05755",
  "openTime": "2018-03-20",
  "patchDescription": "Sean Barrett stb_vorbis\u662f\u4e00\u6b3e\u57fa\u4e8eC++\u7684\u5355\u6587\u4ef6\u516c\u5171\u57df\u5e93\u3002\r\n\r\nSean Barrett stb_vorbis 1.12\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5168\u90e8\u7684vorbis decoding\u8def\u5f84\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684Ogg Vorbis\u6587\u4ef6\u5229\u7528\u8be5\u6f0f\u6d1e\u7834\u574f\u5185\u5b58\uff0c\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff0c\u6267\u884c\u4e3b\u673a\u7a0b\u5e8f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Sean Barrett stb_vorbis\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Sean Barrett stb_vorbis \u003c=1.12"
  },
  "referenceLink": "https://github.com/nothings/stb/commit/244d83bc3d859293f55812d48b3db168e581f6ab",
  "serverity": "\u4e2d",
  "submitTime": "2018-02-26",
  "title": "Sean Barrett stb_vorbis\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e"
}

CVE-2018-1000050 (GCVE-0-2018-1000050)

Vulnerability from cvelistv5 – Published: 2018-02-09 23:00 – Updated: 2024-08-05 12:33

Summary

Sean Barrett stb_vorbis version 1.12 and earlier contains a Buffer Overflow vulnerability in All vorbis decoding paths. that can result in memory corruption, denial of service, comprised execution of host program. This attack appear to be exploitable via Victim must open a specially crafted Ogg Vorbis file. This vulnerability appears to have been fixed in 1.13.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

https://github.com/nothings/stb/commit/244d83bc3d…

x_refsource_CONFIRM

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T12:33:48.843Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/nothings/stb/commit/244d83bc3d859293f55812d48b3db168e581f6ab"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "dateAssigned": "2018-01-30T00:00:00",
      "datePublic": "2018-01-29T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Sean Barrett stb_vorbis version 1.12 and earlier contains a Buffer Overflow vulnerability in All vorbis decoding paths. that can result in memory corruption, denial of service, comprised execution of host program. This attack appear to be exploitable via Victim must open a specially crafted Ogg Vorbis file. This vulnerability appears to have been fixed in 1.13."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-02-09T22:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/nothings/stb/commit/244d83bc3d859293f55812d48b3db168e581f6ab"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "DATE_ASSIGNED": "1/30/2018 14:23:10",
          "ID": "CVE-2018-1000050",
          "REQUESTER": "sean2@nothings.org",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Sean Barrett stb_vorbis version 1.12 and earlier contains a Buffer Overflow vulnerability in All vorbis decoding paths. that can result in memory corruption, denial of service, comprised execution of host program. This attack appear to be exploitable via Victim must open a specially crafted Ogg Vorbis file. This vulnerability appears to have been fixed in 1.13."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/nothings/stb/commit/244d83bc3d859293f55812d48b3db168e581f6ab",
              "refsource": "CONFIRM",
              "url": "https://github.com/nothings/stb/commit/244d83bc3d859293f55812d48b3db168e581f6ab"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2018-1000050",
    "datePublished": "2018-02-09T23:00:00",
    "dateReserved": "2018-02-05T00:00:00",
    "dateUpdated": "2024-08-05T12:33:48.843Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2018-05755

CVE-2018-1000050 (GCVE-0-2018-1000050)

Tags

Sightings

Nomenclature