USN-8307-1

It was discovered that ONNX did not properly validate paths when extracting tar archives during model downloads. An attacker could possibly use this issue to overwrite arbitrary files on the system.

References

Affected packages

Ubuntu:Pro:24.04:LTS / onnx

Package

Name: onnx
Purl: pkg:deb/ubuntu/onnx?arch=source&distro=esm-apps%2Fnoble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.14.1-2.1ubuntu0.1~esm1

Affected versions

1.*

1.13.1-3

1.13.1-3build1

1.14.1-2

1.14.1-2.1

1.14.1-2.1build1

1.14.1-2.1build2

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "binaries": [
        {
            "binary_name": "libonnx-testdata",
            "binary_version": "1.14.1-2.1ubuntu0.1~esm1"
        },
        {
            "binary_name": "libonnx1t64",
            "binary_version": "1.14.1-2.1ubuntu0.1~esm1"
        },
        {
            "binary_name": "python3-onnx",
            "binary_version": "1.14.1-2.1ubuntu0.1~esm1"
        }
    ]
}

Database specific

cves_map

{
    "ecosystem": "Ubuntu:Pro:24.04:LTS",
    "cves": [
        {
            "id": "CVE-2024-5187",
            "severity": [
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
                },
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
                },
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        }
    ]
}

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8307-1.json"