What Are You Looking For?

Popular Tags

Sign Up
MGASA-2021-0571 - Updated olm packages fix security vulnerability

Publication date: 19 Dec 2021
URL: https://advisories.mageia.org/MGASA-2021-0571.html
Type: security
Affected Mageia releases: 8
CVE: CVE-2021-44538

Updated olm packages fix security vulnerability:

The olm_session_describe function in Matrix libolm before 3.2.7 is
vulnerable to a buffer overflow. The Olm session object represents a
cryptographic channel between two parties. Therefore, its state is
partially controllable by the remote party of the channel. Attackerscan construct a crafted sequence of messages to manipulate the state
of the receiver's session in such a way that, for some buffer sizes,
a buffer overflow happens on a call to olm_session_describe.
Furthermore, safe buffer sizes were undocumented. The overflow content
is partially controllable by the attacker and limited to ASCII spaces
and digits (CVE-2021-44538).

References:
- https://bugs.mageia.org/show_bug.cgi?id=29773
- https://matrix.org/blog/2021/12/13/disclosure-buffer-overflow-in-libolm-and-matrix-js-sdk
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44538

SRPMS:
- 8/core/olm-3.2.1-1.1.mga8

Mageia 2021-0571: olm security update

Updated olm packages fix security vulnerability: The olm_session_describe function in Matrix libolm before 3.2.7 is vulnerable to a buffer overflow

Summary

Updated olm packages fix security vulnerability:
The olm_session_describe function in Matrix libolm before 3.2.7 is vulnerable to a buffer overflow. The Olm session object represents a cryptographic channel between two parties. Therefore, its state is partially controllable by the remote party of the channel. Attackerscan construct a crafted sequence of messages to manipulate the state of the receiver's session in such a way that, for some buffer sizes, a buffer overflow happens on a call to olm_session_describe. Furthermore, safe buffer sizes were undocumented. The overflow content is partially controllable by the attacker and limited to ASCII spaces and digits (CVE-2021-44538).

References

- https://bugs.mageia.org/show_bug.cgi?id=29773

- https://matrix.org/blog/2021/12/13/disclosure-buffer-overflow-in-libolm-and-matrix-js-sdk

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44538

Resolution

MGASA-2021-0571 - Updated olm packages fix security vulnerability

SRPMS

- 8/core/olm-3.2.1-1.1.mga8

Severity
Publication date: 19 Dec 2021
URL: https://advisories.mageia.org/MGASA-2021-0571.html
Type: security
CVE: CVE-2021-44538

Related News

Severe Chromium DoS, Info Disclosure Vulns Fixed

Sep 30, 2023

Linux Now Mitigating Hygon CPUs For Inception/SRSO Vulnerability

Oct 2, 2023

Mitigations for Critical c-ares DoS, Code Execution Bug Released

Sep 29, 2023

Critical Zero-Day Heap Buffer Overflow Vuln Fixed in Firefox, Thunderbird

Sep 30, 2023

News

Advisories

HOWTOs

Features

Guide To Tackling Network Programming Assignments On Linux
Guide To Software Security Testing On Linux
Everything You Need to Know About Linux Proxy Servers
Simple Steps for Identifying & Troubleshooting a Kernel Panic
Linux Endpoint Detection and Response (EDR): A Crucial Part of a Successful Cybersecurity Strategy

About Us

Powered By

Footer Logo

Feedback