1. Forum
  2. Usenet
  3. LINUX.GENTOO.ANNOUNCE

  • [gentoo-announce] [ GLSA 202408-27 ] AFLplusplus: Arbitrary Code Execut

    From glsamaker@gentoo.org@21:1/5 to All on Sun Aug 11 16:50:01 2024
    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
    Gentoo Linux Security Advisory GLSA 202408-27
    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
    https://security.gentoo.org/
    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

    Severity: Normal
    Title: AFLplusplus: Arbitrary Code Execution
    Date: August 11, 2024
    Bugs: #897924
    ID: 202408-27

    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

    Synopsis
    ========

    A vulnerability has been discovered in AFLplusplus, which can lead to
    arbitrary code execution via an untrusted CWD.

    Background
    ==========

    The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

    Affected packages
    =================

    Package Vulnerable Unaffected
    ------------------------- ------------ ------------
    app-forensics/aflplusplus < 4.06c >= 4.06c

    Description
    ===========

    In AFL++ 4.05c, the CmpLog component uses the current working directory
    to resolve and execute unprefixed fuzzing targets, allowing code
    execution.

    Impact
    ======

    In AFL++ 4.05c, the CmpLog component uses the current working directory
    to resolve and execute unprefixed fuzzing targets, allowing code
    execution.

    Workaround
    ==========

    There is no known workaround at this time.

    Resolution
    ==========

    All AFLplusplus users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=app-forensics/aflplusplus-4.06c"

    References
    ==========

    [ 1 ] CVE-2023-26266
    https://nvd.nist.gov/vuln/detail/CVE-2023-26266

    Availability
    ============

    This GLSA and any updates to it are available for viewing at
    the Gentoo Security Website:

    https://security.gentoo.org/glsa/202408-27

    Concerns?
    =========

    Security is a primary focus of Gentoo Linux and ensuring the
    confidentiality and security of our users' machines is of utmost
    importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

    License
    =======

    Copyright 2024 Gentoo Foundation, Inc; referenced text
    belongs to its owner(s).

    The contents of this document are licensed under the
    Creative Commons - Attribution / Share Alike license.

    https://creativecommons.org/licenses/by-sa/2.5
    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEpqTA6ABLMxh/aChGFMQkOaVy+9kFAma4zZcACgkQFMQkOaVy +9kb8g//UzGGiKNhdXtFalopkBf5A3GTXLoNgwk1uNP4cXMzkvI7Y+xrqB9V2+ul nCI2ml0PPc0eZbGBr7jjaS4U6dgxiDYJJzT9GesZoKS//JfAIvI7Lgsu05oSV6Yk Ebp4WbPOfPE6Ji7PVZxEsFM3abFzCJ5ipGx56uQBF2w7QtuLOLlL8H5ZtDACXNz4 nNT2MpKY3p9oFtQ/IGMSK1KtJRQF7RGGZeNYDQ6bk14XXm5vPkCFxR5Uaz6qugOk i/fbBG45pdQbAWNrCzCfeZOAJCBeNe1ycFFMZYpCbp7cZ0XUj2VnQctUyrSqLiOR Y/G7Hx1XUk2EYiSsqI5F1fCoI3GRciTXbruUpUgv0+kXB1/NIDDrhXuhgDt5Bxey nzi6w1RgR5LjYO8XIl07Uhafim2bR/eEYhKtF2K4EkX3uszHIJm3JHWIrN0DDwhe I4k28TcZ0FMfUan3cxP83OqP53/nujHKjRBDZH5Ih3aQnJd7LffDv/qxFuASGL56 T7EsNmzjzWSkU9+h3OxPT2NvdukbNyjx4tK+nVqm2OxXkx9iQI51826uJvh2OcXF Ir0wxWgk+Ko0WHBnDCcMKaadMH5nk54zhaO+LLivSh6xwbEA5/kb49w7bkxAY4MY juJ0/BBHY4tH8JJ3yZwEjLs1AXEdJz2Dc1RRqx2HBNImBYZRAXI=
    =IkIn
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)