Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

out-of-bounds access in the Header_populateFromSettings function (CVE-2024-37676) #1489

Open
carnil opened this issue Jun 22, 2024 · 1 comment
Open

out-of-bounds access in the Header_populateFromSettings function (CVE-2024-37676) #1489

carnil opened this issue Jun 22, 2024 · 1 comment
Labels
security 👮 Issues with security implications support request This is not a code issue but merely a support request. Please use the mailing list or IRC instead.

Comments

@carnil
Copy link

carnil commented Jun 22, 2024

Hi

While reviewing some CVEs in downstream Debian distribution including htop, I noticed there was a CVE assignment https://www.cve.org/CVERecord?id=CVE-2024-37676 with only reference https://gist.github.com/Cirno9-dev/0109cde3bdbe7eccc6770515106740b7

Is this something which was reported upstream?
@BenBE
Copy link
Member

BenBE commented Jun 23, 2024

While reviewing some CVEs in downstream Debian distribution including htop, I noticed there was a CVE assignment https://www.cve.org/CVERecord?id=CVE-2024-37676 with only reference https://gist.github.com/Cirno9-dev/0109cde3bdbe7eccc6770515106740b7

I've seen bug reports with more effort put into them …

Is this something which was reported upstream?

No.

And honestly, just reading that gist makes me doubt this is even applicable.

Let's see:

[CVE ID]
CVE-2024-37676
[PRODUCT]
HTOP
[VERSION]
2.2.0

That version is about 5 years old. Since then there's been several releases.

[PROBLEM TYPE]
out-of-bounds access

[DESCRIPTION]
htop processes the configuration file with the number of right_meter_modes configured as len. if the number of right_meters configured does not match then an out-of-bounds access is generated in the Header_populateFromSettings function.

This handling has been refactored in recent versions when we added support for different numbers of columns for the meter area. AFAICS this does not look like this issue still affects recent versions of htop.

@BenBE BenBE added support request This is not a code issue but merely a support request. Please use the mailing list or IRC instead. security 👮 Issues with security implications labels Jun 23, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
security 👮 Issues with security implications support request This is not a code issue but merely a support request. Please use the mailing list or IRC instead.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@BenBE @carnil