[3.6] libmtp: various flaws (CVE-2017-9831, CVE-2017-9832)
CVE-2017-9831: An integer overflow vulnerability in the
ptp_unpack_EOS_CustomFuncEx function of the ptp-pack.c file of libmtp
(version 1.1.12 and below) allows attackers to cause
a denial of service (out-of-bounds memory access) or maybe remote code
execution by inserting a mobile device into a personal computer through
a USB cable.
Fixed In Version:
libmtp 1.1.13
References:
https://sourceforge.net/p/libmtp/mailman/message/35727918/
https://nvd.nist.gov/vuln/detail/CVE-2017-9831
CVE-2017-9832: An integer overflow vulnerability in ptp-pack.c
(ptp_unpack_OPL function) of libmtp (version 1.1.12 and below) allows
attackers to cause a denial of service
(out-of-bounds memory access) or maybe remote code execution by
inserting a mobile device into a personal computer through a USB cable.
Fixed In Version:
libmtp 1.1.13
References:
https://sourceforge.net/p/libmtp/mailman/message/35727918/
https://nvd.nist.gov/vuln/detail/CVE-2017-9832
(from redmine: issue id 7551, created on 2017-07-19, closed on 2017-08-09)
- Relations:
- parent #7550 (closed)
- Changesets:
- Revision 03bc091f by Francesco Colista on 2017-08-09T08:13:40Z:
main/libmtp: security fix to 1.1.13
CVE-2017-9831
CVE-2017-9832
Fixes #7551