[rttopo-dev] Empty geometry bug in PostGIS
Andrea Peri
aperi2007 at gmail.com
Fri Dec 31 07:06:22 PST 2021
Hi, thx for email.
I apply the patch to repo.
Best Regards,
Andrea Peri.
Il giorno gio 30 dic 2021 alle ore 12:22 Carlos López <clopez at suse.de> ha
scritto:
> Hello list,
>
> I am a security engineer from the SUSE Linux security team.
>
> During an investigation of CVE-2017-18359 [0], I noticed that librttopo
> seems to share the affected code in PostGIS. After looking at PostGIS'
> bug issue [1] and the related changeset [2], I noticed that the affected
> function, `lwgeom_to_x3d3` [3], matches `rtgeom_to_x3d3` in librttopo
> [4], and the latter lacks the appropriate check for empty geometries.
> This is considered a remote DoS vulnerability. Could you please confirm
> if librttopo is vulnerable, and if so, patch accordingly? Thanks in
> advance.
>
> Best regards,
>
> Carlos
>
> [0] https://nvd.nist.gov/vuln/detail/CVE-2017-18359
> [1] https://trac.osgeo.org/postgis/ticket/3704
> [2] https://trac.osgeo.org/postgis/changeset/15444
> [3]
>
> https://trac.osgeo.org/postgis/browser/trunk/liblwgeom/lwout_x3d.c?rev=15444#L60
> [4]
>
> https://git.osgeo.org/gitea/rttopo/librttopo/src/branch/master/src/rtout_x3d.c#L62
>
> --
> Carlos López
> Jr. Security Engineer
> SUSE Software Solutions
>
> _______________________________________________
> librttopo-dev mailing list
> librttopo-dev at lists.osgeo.org
> https://lists.osgeo.org/mailman/listinfo/librttopo-dev
>
--
-----------------
Andrea Peri
. . . . . . . . .
qwerty àèìòù
-----------------
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.osgeo.org/pipermail/librttopo-dev/attachments/20211231/fd9ce04c/attachment.html>
More information about the librttopo-dev
mailing list