[postgis-devel] Fwd: [rttopo-dev] Empty geometry bug in PostGIS [DoS vulnerability]
Andrea Peri
aperi2007 at gmail.com
Mon Jan 3 14:53:14 PST 2022
Hi Jeff.
I received the email from Suse and update the code.
Also I apply your patches.
Obviously I refer to librttopo code.
Regards,
A.
Il giorno gio 30 dic 2021 alle ore 13:57 Jeff McKenna <
jmckenna at gatewaygeomatics.com> ha scritto:
> Forwarding, as I am not sure how many follow librttopo list....
>
>
>
>
> -------- Forwarded Message --------
>
>
> Hello list,
>
> I am a security engineer from the SUSE Linux security team.
>
> During an investigation of CVE-2017-18359 [0], I noticed that librttopo
> seems to share the affected code in PostGIS. After looking at PostGIS'
> bug issue [1] and the related changeset [2], I noticed that the affected
> function, `lwgeom_to_x3d3` [3], matches `rtgeom_to_x3d3` in librttopo
> [4], and the latter lacks the appropriate check for empty geometries.
> This is considered a remote DoS vulnerability. Could you please confirm
> if librttopo is vulnerable, and if so, patch accordingly? Thanks in
> advance.
>
> Best regards,
>
> Carlos
>
> [0] https://nvd.nist.gov/vuln/detail/CVE-2017-18359
> [1] https://trac.osgeo.org/postgis/ticket/3704
> [2] https://trac.osgeo.org/postgis/changeset/15444
> [3]
>
> https://trac.osgeo.org/postgis/browser/trunk/liblwgeom/lwout_x3d.c?rev=15444#L60
> [4]
>
> https://git.osgeo.org/gitea/rttopo/librttopo/src/branch/master/src/rtout_x3d.c#L62
>
> --
> Carlos López
> Jr. Security Engineer
> SUSE Software Solutions
>
>
>
>
>
>
>
> _______________________________________________
> postgis-devel mailing list
> postgis-devel at lists.osgeo.org
> https://lists.osgeo.org/mailman/listinfo/postgis-devel
>
--
-----------------
Andrea Peri
. . . . . . . . .
qwerty àèìòù
-----------------
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.osgeo.org/pipermail/postgis-devel/attachments/20220103/36bc1d26/attachment.html>
More information about the postgis-devel
mailing list