FreeBSD Security Advisory FreeBSD-SA-19:09.iconv

03/07/19, FreeBSD Security Advisory FreeBSD-SA-19:09.iconv
From: FreeBSD Security Advisories <security-advisories@freebsd.org>

Generated by MHonArc

CSIM Logo WelcomeCourses
Faculty, Student, Staff
Projects and reports
Conferences, workshop and seminars
Laboratories and reasearch facilities
Information related to CSIM
Information non-related to CSIM
Address, map, phone, etc.
Search

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]


To: FreeBSD Security Advisories <security-advisories@freebsd.org>
Subject: FreeBSD Security Advisory FreeBSD-SA-19:09.iconv
From: FreeBSD Security Advisories <security-advisories@freebsd.org>
Date: Wed, 3 Jul 2019 00:49:20 +0000 (UTC)
Arc-authentication-results: i=1; mx1.freebsd.org
Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1562116420; h=from:from:sender:sender:reply-to:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding:in-reply-to: references:list-id:list-unsubscribe:list-subscribe:list-post; bh=l2GdgLCj+8F0t+vu5xC0hcjoez2ZegxmaTiWLgiOrwE=; b=sI+M7LaTeazuu1EJqNUqU00N69QH5E6R9wppQcy1ns0PV/3gD7sX4pW1d3I5Ipyt9SGoaY XM+4XYaPASIKqW1/89S8gsgFBCXQtnkzEmD1GDsryCgQSpUiv6YhA99FA6tRkcVsjlNFVt gI4dmITiYQG6OBT8FH2+K80PXoyLz9n98tA6xeX2JDGGi88XzjstyAk/R0ECAUFG+Fw05z Aiy1WOZUBNHW17CozyOIph3lKGU4gQLQHj08Ngy52j9dHyBSWy/uUzuuhHVFtkJ75h3hr1 lnxTDBzhzCaxMzqpCD9MB84l8Oic92ykNG2/93+P9dwif3Yb9uIpfOO8SLx+ZA==
Arc-seal: i=1; s=dkim; d=freebsd.org; t=1562116420; a=rsa-sha256; cv=none; b=bHOzCW42euyeiaLVitAisB9eO01wlQtYlxihRH72EnLMnJDXWeD+p6gMTS6x7wbCHJ6snK Re527tQOWibbRCoDwbEV5XdWF3U5v0HVxQ+vBQnKNiyX7z5T2FBvUvl+TwYb480cz2IG9g Bg1xq5aT+KPWOZ50oghYTJTH3qf3mG3y6fiiX04TkeFKETwTeixX10rUohEm8P2U6fg6Ld 2uzCypRwSM2KQvyRT5Vk5jLBy1AYQQus0SKSGP7hHID7HbEX510sELCIL4mK5LwnPvKB27 4bspgyqUjGQ3Mh582Vl0Xs+W6qfwb9qFoBv5ywecEbZ8SNyF1X3x5eMSPR/Xrg==
Authentication-results: mail.cs.ait.ac.th (amavisd-new); dkim=pass (2048-bit key) header.d=freebsd.org
Authentication-results: mx1.freebsd.org
Delivered-to: on@cs.ait.ac.th
Delivered-to: freebsd-security-notifications@mailman.ysv.freebsd.org
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1562116420; h=from:from:sender:sender:reply-to:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding:in-reply-to: references:list-id:list-unsubscribe:list-subscribe:list-post; bh=l2GdgLCj+8F0t+vu5xC0hcjoez2ZegxmaTiWLgiOrwE=; b=s4rxMlEh92FDwmdQdpzvrI7j1r6T+sJSgzVMN5KUFadNlwl0RprlMg7hZu07BATjJjIRTv qxWviI8iQsbKdwcNnAhqMmW8Fv49y2pCrj4WEpW5+MnLh3xlIWjqNPvuQqiwezGrhNEEMn WdJxtNkaTJeKjDT2eFgmy0jut//6kyJ9KaUg3JNtwZ8WyYvSGSp9DyAljJ0ObvWkn6Xjs1 ffY6/jM7xsn3iyfraPl+7wqQnaJdg5RLcbUUJFaouqpw9dOLKBBT05epBQ2nn+L+MMNmWw X5JI8d644ItJ459Yn1yUsAXQEXmJO/W58FknGbefq0e2hVYEkDJgXOxjB0YRPw==
List-archive: <http://lists.freebsd.org/pipermail/freebsd-security-notifications/>
List-help: <mailto:freebsd-security-notifications-request@freebsd.org?subject=help>
List-id: "Moderated Security Notifications \[moderated, low volume\]" <freebsd-security-notifications.freebsd.org>
List-post: <mailto:freebsd-security-notifications@freebsd.org>
List-subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security-notifications>, <mailto:freebsd-security-notifications-request@freebsd.org?subject=subscribe>
List-unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security-notifications>, <mailto:freebsd-security-notifications-request@freebsd.org?subject=unsubscribe>
Reply-to: freebsd-security@freebsd.org
Sender: owner-freebsd-security-notifications@freebsd.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

=============================================================================
FreeBSD-SA-19:09.iconv                                      Security Advisory
                                                          The FreeBSD Project

Topic:          iconv buffer overflow

Category:       core
Module:         libc
Announced:      2019-07-02
Credits:        Andrea Venturoli <security@netfence.it>, NetFence
Affects:        All supported versions of FreeBSD.
Corrected:      2019-07-03 00:01:38 UTC (stable/12, 12.0-STABLE)
                2019-07-03 00:00:39 UTC (releng/12.0, 12.0-RELEASE-p7)
                2019-07-03 00:03:14 UTC (stable/11, 11.3-PRERELEASE)
                2019-07-03 00:00:39 UTC (releng/11.3, 11.3-RC3-p1)
                2019-07-03 00:00:39 UTC (releng/11.2, 11.2-RELEASE-p11)
CVE Name:       CVE-2019-5600

For general information regarding FreeBSD Security Advisories,
including descriptions of the fields above, security branches, and the
following sections, please visit <URL:https://security.FreeBSD.org/>.

I.   Background

The iconv(3) API converts text data from one character encoding to another
and is available as part of the standard C library (libc).

II.  Problem Description

With certain inputs, iconv may write beyond the end of the output buffer.

III. Impact

Depending on the way in which iconv is used, an attacker may be able to
create a denial of service, provoke incorrect program behavior, or induce a
remote code execution.  iconv is a libc library function and the nature of
possible attacks will depend on the way in which iconv is used by
applications or daemons.

IV.  Workaround

No workaround is available.  Stack canaries (-fstack-protector), which are
enabled by default, provide a degreee of defense against code injection but
not against denial of service.

V.   Solution

Upgrade your vulnerable system to a supported FreeBSD stable or release /
security branch (releng) dated after the correction date.  Restart any
potentially affected daemons.

Perform one of the following:

1) To update your vulnerable system via a binary patch:

Systems running a RELEASE version of FreeBSD on the i386 or amd64
platforms can be updated via the freebsd-update(8) utility:

# freebsd-update fetch
# freebsd-update install

2) To update your vulnerable system via a source code patch:

The following patches have been verified to apply to the applicable
FreeBSD release branches.

a) Download the relevant patch from the location below, and verify the
detached PGP signature using your PGP utility.

# fetch https://security.FreeBSD.org/patches/SA-19:09/iconv.patch
# fetch https://security.FreeBSD.org/patches/SA-19:09/iconv.patch.asc
# gpg --verify iconv.patch.asc

b) Apply the patch.  Execute the following commands as root:

# cd /usr/src
# patch < /path/to/patch

c) Recompile the operating system using buildworld and installworld as
described in <URL:https://www.FreeBSD.org/handbook/makeworld.html>.

Restart all daemons that use the library, or reboot the system.

VI.  Correction details

The following list contains the correction revision numbers for each
affected branch.

Branch/path                                                      Revision
- -------------------------------------------------------------------------
stable/12/                                                        r349622
releng/12.0/                                                      r349621
stable/11/                                                        r349624
releng/11.3/                                                      r349621
releng/11.2/                                                      r349621
- -------------------------------------------------------------------------

To see which files were modified by a particular revision, run the
following command, replacing NNNNNN with the revision number, on a
machine with Subversion installed:

# svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base

Or visit the following URL, replacing NNNNNN with the revision number:

<URL:https://svnweb.freebsd.org/base?view=revision&revision=NNNNNN>

VII. References

<URL:https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5600>

The latest revision of this advisory is available at
<URL:https://security.FreeBSD.org/advisories/FreeBSD-SA-19:09.iconv.asc>
-----BEGIN PGP SIGNATURE-----
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=ItWl
-----END PGP SIGNATURE-----
_______________________________________________
freebsd-security-notifications@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-security-notifications
To unsubscribe, send any mail to "freebsd-security-notifications-unsubscribe@freebsd.org"


Previous message sorted by date: FreeBSD Security Advisory FreeBSD-SA-19:08.rack
Next message sorted by date: FreeBSD Security Advisory FreeBSD-SA-19:10.ufs
Previous message sorted by thread: FreeBSD Security Advisory FreeBSD-SA-19:08.rack
Next message by thread: FreeBSD Security Advisory FreeBSD-SA-19:10.ufs
Main Index
Thread Index

CSIM home pageWMailAccount managementCSIM LibraryNetwork test toolsSearch CSIM directories
Contact us: Olivier Nicole CSIM    SET    AIT Last update: Jul 2019