{
  "schema_version": "1.7.0",
  "id": "MGASA-2015-0406",
  "published": "2015-10-25T14:38:05Z",
  "modified": "2015-10-25T14:33:34Z",
  "summary": "Updated fuseiso packages fix security vulnerabilities",
  "details": "An integer overflow, leading to a heap-based buffer overflow flaw was\nfound in the way FuseISO, a FUSE module to mount ISO filesystem images,\nperformed reading of certain ZF blocks of particular inodes. A remote\nattacker could provide a specially-crafted ISO file that, when mounted via\nthe fuseiso tool would lead to fuseiso binary crash.\n\nA stack-based buffer overflow flaw was found in the way FuseISO, a FUSE\nmodule to mount ISO filesystem images, performed expanding of directory\nportions for absolute path filename entries. A remote attacker could\nprovide a specially-crafted ISO file that, when mounted via fuseiso tool\nwould lead to fuseiso binary crash or, potentially, arbitrary code\nexecution with the privileges of the user running the fuseiso executable.\nThis issue was discovered by Florian Weimer of Red Hat Product Security\nTeam. The issue got resolved by checking the resulting length of an\nabsolute path name and by bailing out if the platform's PATH_MAX value\ngets exceeded.\n",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://advisories.mageia.org/MGASA-2015-0406.html"
    },
    {
      "type": "REPORT",
      "url": "https://bugs.mageia.org/show_bug.cgi?id=16872"
    },
    {
      "type": "WEB",
      "url": "http://lwn.net/Alerts/658923/"
    }
  ],
  "affected": [
    {
      "package": {
        "ecosystem": "Mageia:5",
        "name": "fuseiso",
        "purl": "pkg:rpm/mageia/fuseiso?arch=source&distro=mageia-5"
      },
      "ranges": [
        {
          "type": "ECOSYSTEM",
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "20070708-11.1.mga5"
            }
          ]
        }
      ],
      "ecosystem_specific": {
        "section": "core"
      }
    }
  ],
  "credits": [
    {
      "name": "Mageia",
      "type": "COORDINATOR",
      "contact": [
        "https://wiki.mageia.org/en/Packages_Security_Team"
      ]
    }
  ]
}
