[3.6] libplist: Multiple issues (CVE-2017-5209, CVE-2017-5545, CVE-2017-5834, CVE-2017-5835, CVE-2017-5836)
CVE-2017-5209:
The base64decode function in base64.c in libimobiledevice libplist
through 1.12 allows attackers to obtain sensitive information
from process memory or cause a denial of service (buffer over-read) via
split encoded Apple Property List data.
Reference:
https://github.com/libimobiledevice/libplist/issues/84
Patch:
https://github.com/libimobiledevice/libplist/commit/3a55ddd3c4c11ce75a86afbefd085d8d397ff957
CVE-2017-5545:
The main function in plistutil.c in libimobiledevice libplist through
1.12 allows attackers to obtain sensitive information from process
memory or cause a denial of service (buffer over-read) via Apple
Property List data that is too short.
Reference:
https://github.com/libimobiledevice/libplist/issues/87
http://seclists.org/oss-sec/2017/q1/239
Patch:
https://github.com/libimobiledevice/libplist/commit/7391a506352c009fe044dead7baad9e22dd279ee
CVE-2017-5834: heap-buffer-overflow in parse_dict_node
Reference:
https://github.com/libimobiledevice/libplist/issues/89
http://seclists.org/oss-sec/2017/q1/239
Patch:
https://github.com/libimobiledevice/libplist/commit/4765d9a60ca4248a8f89289271ac69cbffcc29bc
CVE-2017-5835: memory allocation error
Reference:
https://github.com/libimobiledevice/libplist/issues/88
http://seclists.org/oss-sec/2017/q1/239
Patch:
https://github.com/libimobiledevice/libplist/commit/26061aac4ec75e7a4469a9aab9a424716223e5c4
CVE-2017-5836: issue in plist_free_data plist.c:185
Reference:
https://github.com/libimobiledevice/libplist/issues/86
http://seclists.org/oss-sec/2017/q1/239
Patch:
https://github.com/libimobiledevice/libplist/commit/7a28a14cf6ed547dfd2e52a4db17f47242bfdef9
(from redmine: issue id 6899, created on 2017-02-20, closed on 2017-06-29)
- Relations:
- parent #6898 (closed)
- Changesets:
- Revision d2b9ac4f by Natanael Copa on 2017-05-31T14:10:29Z:
community/libplist: security upgrade to 2.0.0
CVE-2017-5209
CVE-2017-5545
CVE-2017-5834
CVE-2017-5835
CVE-2017-5836
This seems to be an update that is ABI compatible, and only kodi uses is.
fixes #6899