An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a large plen in fmt_okt_load_song in the Amiga Oktalyzer parser in fmt/okt.c.
Weakness
The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Schism_tracker | Schismtracker | * | 20190722 (including) |
| Schism | Ubuntu | bionic | * |
| Schism | Ubuntu | devel | * |
| Schism | Ubuntu | disco | * |
| Schism | Ubuntu | eoan | * |
| Schism | Ubuntu | esm-apps/bionic | * |
| Schism | Ubuntu | esm-apps/focal | * |
| Schism | Ubuntu | esm-apps/jammy | * |
| Schism | Ubuntu | esm-apps/noble | * |
| Schism | Ubuntu | esm-apps/xenial | * |
| Schism | Ubuntu | focal | * |
| Schism | Ubuntu | groovy | * |
| Schism | Ubuntu | hirsute | * |
| Schism | Ubuntu | impish | * |
| Schism | Ubuntu | jammy | * |
| Schism | Ubuntu | kinetic | * |
| Schism | Ubuntu | lunar | * |
| Schism | Ubuntu | mantic | * |
| Schism | Ubuntu | noble | * |
| Schism | Ubuntu | oracular | * |
| Schism | Ubuntu | plucky | * |
| Schism | Ubuntu | questing | * |
| Schism | Ubuntu | trusty | * |
| Schism | Ubuntu | xenial | * |
References
- http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00072.html
- http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00083.html
- https://github.com/schismtracker/schismtracker/issues/202
- https://github.com/schismtracker/schismtracker/releases/tag/20190805
- https://security.gentoo.org/glsa/202107-12
- http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00072.html
- http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00083.html
- https://github.com/schismtracker/schismtracker/issues/202
- https://github.com/schismtracker/schismtracker/releases/tag/20190805
- https://security.gentoo.org/glsa/202107-12