CVE-2023-4234

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decodesubmitreport() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decodesubmit(), but it was forgotten in decodesubmit_report().

References

Affected packages

Debian:11 / ofono

Package

Name: ofono
Purl: pkg:deb/debian/ofono?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.31-3

1.31-4

2.*

2.10-1

2.11-1

2.12-1

2.14-1

2.16-1

2.16-2

2.16-3

2.16-4

2.16-5

2.18-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / ofono

Package

Name: ofono
Purl: pkg:deb/debian/ofono?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.31-3

1.31-4

2.*

2.10-1

2.11-1

2.12-1

2.14-1

2.16-1

2.16-2

2.16-3

2.16-4

2.16-5

2.18-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / ofono

Package

Name: ofono
Purl: pkg:deb/debian/ofono?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.10-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:14 / ofono

Package

Name: ofono
Purl: pkg:deb/debian/ofono?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.10-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}