Report forwarded
to debian-bugs-dist@lists.debian.org, team@security.debian.org, Debian Games Team <pkg-games-devel@lists.alioth.debian.org>: Bug#1017579; Package src:freeciv.
(Wed, 17 Aug 2022 22:54:03 GMT) (full text, mbox, link).
Acknowledgement sent
to Moritz Muehlenhoff <jmm@debian.org>:
New Bug report received and forwarded. Copy sent to team@security.debian.org, Debian Games Team <pkg-games-devel@lists.alioth.debian.org>.
(Wed, 17 Aug 2022 22:54:04 GMT) (full text, mbox, link).
Source: freeciv
Version: 2.6.6-1
Severity: grave
Tags: security
X-Debbugs-Cc: Debian Security Team <team@security.debian.org>
Quoting from the announcement posted to oss-security (no CVE is
available):
----------------------------------------------------------------------
Just released freeciv-2.6.7 & freeciv-3.0.3 fix buffer overflow in
Modpack Installer utility's handling of the modpack URL. Specially
crafted URLs, without any '/' -characters would result in an
underflowing length (unsigned)(-1) string copy, i.e., all of the
NULL-terminated string given as "URL" would get written beyond the
buffer reserved for it.
Freeciv source tarballs are available from
https://www.freeciv.org/download.html for current 3.0, and from
https://www.freeciv.org/wiki/Old_downloads for 2.6.
In case you can't make full version update at the moment, bug tracker
ticket has also a patch for this single issue attached:
https://osdn.net/projects/freeciv/ticket/45299
----------------------------------------------------------------------
Changed Bug title to 'freeciv: CVE-2022-6083: Modpack Installer buffer overflow' from 'Freeciv < 2.6.7, freeciv-3.0 < 3.0.3, Modpack Installer buffer overflow'.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Thu, 18 Aug 2022 04:33:02 GMT) (full text, mbox, link).
Changed Bug title to 'freeciv: modpack installer buffer overflow' from 'freeciv: CVE-2022-6083: Modpack Installer buffer overflow'.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Fri, 19 Aug 2022 04:27:02 GMT) (full text, mbox, link).
Changed Bug title to 'freeciv: freeciv modpack installer buffer overflow' from 'freeciv: modpack installer buffer overflow'.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Fri, 19 Aug 2022 07:48:02 GMT) (full text, mbox, link).
Changed Bug title to 'Freeciv < 2.6.7, freeciv-3.0 < 3.0.3, Modpack Installer buffer overflow' from 'freeciv: freeciv modpack installer buffer overflow'.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Fri, 19 Aug 2022 07:48:04 GMT) (full text, mbox, link).
Marked as found in versions freeciv/2.6.0-2.
Request was from Adrian Bunk <bunk@debian.org>
to control@bugs.debian.org.
(Tue, 30 Aug 2022 05:21:03 GMT) (full text, mbox, link).
Added tag(s) pending.
Request was from Tobias Frost <tobi@debian.org>
to control@bugs.debian.org.
(Tue, 30 Aug 2022 11:09:04 GMT) (full text, mbox, link).
Information forwarded
to debian-bugs-dist@lists.debian.org, Debian Games Team <pkg-games-devel@lists.alioth.debian.org>: Bug#1017579; Package src:freeciv.
(Wed, 31 Aug 2022 06:00:02 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
Extra info received and forwarded to list. Copy sent to Debian Games Team <pkg-games-devel@lists.alioth.debian.org>.
(Wed, 31 Aug 2022 06:00:02 GMT) (full text, mbox, link).
Control: retitle -1 freeciv: CVE-2022-3904: Modpack Installer buffer overflow
On Thu, Aug 18, 2022 at 12:51:28AM +0200, Moritz Muehlenhoff wrote:
> Source: freeciv
> Version: 2.6.6-1
> Severity: grave
> Tags: security
> X-Debbugs-Cc: Debian Security Team <team@security.debian.org>
>
> Quoting from the announcement posted to oss-security (no CVE is
> available):
>
> ----------------------------------------------------------------------
> Just released freeciv-2.6.7 & freeciv-3.0.3 fix buffer overflow in
> Modpack Installer utility's handling of the modpack URL. Specially
> crafted URLs, without any '/' -characters would result in an
> underflowing length (unsigned)(-1) string copy, i.e., all of the
> NULL-terminated string given as "URL" would get written beyond the
> buffer reserved for it.
>
> Freeciv source tarballs are available from
> https://www.freeciv.org/download.html for current 3.0, and from
> https://www.freeciv.org/wiki/Old_downloads for 2.6.
>
> In case you can't make full version update at the moment, bug tracker
> ticket has also a patch for this single issue attached:
> https://osdn.net/projects/freeciv/ticket/45299
> ----------------------------------------------------------------------
CVE-2022-39047 has been assigned for this issue.
Regards,
Salvatore
Changed Bug title to 'freeciv: CVE-2022-3904: Modpack Installer buffer overflow' from 'Freeciv < 2.6.7, freeciv-3.0 < 3.0.3, Modpack Installer buffer overflow'.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to 1017579-submit@bugs.debian.org.
(Wed, 31 Aug 2022 06:00:03 GMT) (full text, mbox, link).
Reply sent
to Tobias Frost <tobi@debian.org>:
You have taken responsibility.
(Wed, 31 Aug 2022 19:24:07 GMT) (full text, mbox, link).
Notification sent
to Moritz Muehlenhoff <jmm@debian.org>:
Bug acknowledged by developer.
(Wed, 31 Aug 2022 19:24:07 GMT) (full text, mbox, link).
Source: freeciv
Source-Version: 3.0.3-1
Done: Tobias Frost <tobi@debian.org>
We believe that the bug you reported is fixed in the latest version of
freeciv, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1017579@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Tobias Frost <tobi@debian.org> (supplier of updated freeciv package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Wed, 31 Aug 2022 20:39:45 +0200
Source: freeciv
Architecture: source
Version: 3.0.3-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Games Team <pkg-games-devel@lists.alioth.debian.org>
Changed-By: Tobias Frost <tobi@debian.org>
Closes: 631775984807101342610134291017579
Changes:
freeciv (3.0.3-1) unstable; urgency=medium
.
* New upstream release. (Closes: #631775, #1013429, #1017579)
* Refreshing patches.
* Fix cleaning of project to prepare for build two time… (Closes: #1013426)
* remove lua in d/clean, not just prior to build
* that allows one to drop some overrides from d/rules
* Use upstreams configure flag enable-sys-lua=yes, but that still needs
patching of configure.ac and a Makefile.am.
* Break/Replaces on freeciv-data are no longer needed (version fulfilled
since oldstable.)
* Retire package freeciv-sound-standard and merge it into
freeciv-data. (Closes: #984807)
* Update d/copyright.
* Bump S-V to 4.6.1, no changes needed.
* Fix manpage section of ruledit.6 (manpage.patch).
* Add symlink to freeciv-gtk3.6 manpage.
* Change dh_missing policy to fail-missing.
* Specify Rules-Requires-Root:no.
* Simplify d/rules.
* Add patch with spelling fixes.
* Adding myself as uploaders.
* Removing Karl Goetz from uploaders. Thanks for your past work!
Checksums-Sha1:
d417b5e5357f08084a96fdc7d216964552f893ff 2728 freeciv_3.0.3-1.dsc
c3af22d735a128a2855ee38d6bf969da6e0084c3 33538868 freeciv_3.0.3.orig.tar.xz
72616773d48b134554dc122017b17d83c1458a07 28408 freeciv_3.0.3-1.debian.tar.xz
3d34807858ba475a96fbdea09ed1da400886e952 21253 freeciv_3.0.3-1_amd64.buildinfo
Checksums-Sha256:
4198553731cc30cb030493eda76cbe9dc126570fbfb971407deb9171adfa5d7b 2728 freeciv_3.0.3-1.dsc
13215adc96be9f2894d5f3a12c78b8ebb9ae06ecdab25fe6bb1794f6e6d2b61b 33538868 freeciv_3.0.3.orig.tar.xz
29245c8453836a921a2e59261175609491e18592cb5721a7ccbdb64d6eb2fb4a 28408 freeciv_3.0.3-1.debian.tar.xz
ff83131976ba7484926a09b8620c73819e5ab6bcf0771fbb98544d4db4d22129 21253 freeciv_3.0.3-1_amd64.buildinfo
Files:
3b6f0cd01087b8426792a2ea913e5ada 2728 games optional freeciv_3.0.3-1.dsc
7f0347d6515bfa97c4bdec0a3419b05c 33538868 games optional freeciv_3.0.3.orig.tar.xz
e6644c2a7c39c22a861c2a4ffe9dabf2 28408 games optional freeciv_3.0.3-1.debian.tar.xz
e1a235e1ba7572e4c02d181d3fc6830a 21253 games optional freeciv_3.0.3-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=hRqs
-----END PGP SIGNATURE-----
Changed Bug title to 'freeciv: CVE-2022-39047: Modpack Installer buffer overflow' from 'freeciv: CVE-2022-3904: Modpack Installer buffer overflow'.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Wed, 31 Aug 2022 21:15:04 GMT) (full text, mbox, link).
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Sun, 11 Jun 2023 07:40:06 GMT) (full text, mbox, link).
Debbugs is free software and licensed under the terms of the GNU General
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.