Bug 1955568 (CVE-2020-27350)

Summary: CVE-2020-27350 apt: integer overflows and underflows while parsing .deb packages
Product: [Other] Security Response Reporter: msiddiqu
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED NOTABUG QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: Axel.Thimm, kaycoth, moceap, ngompa13, sergio
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2021-05-11 20:33:46 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1955569    
Bug Blocks: 1955570    

Description msiddiqu 2021-04-30 12:12:43 UTC 
APT had several integer overflows and underflows while parsing .deb packages, aka GHSL-2020-168 GHSL-2020-169, in files apt-pkg/contrib/extracttar.cc, apt-pkg/deb/debfile.cc, and apt-pkg/contrib/arfile.ccAPT had several integer overflows and underflows while parsing .deb packages, aka GHSL-2020-168 GHSL-2020-169, in files apt-pkg/contrib/extracttar.cc, apt-pkg/deb/debfile.cc, and apt-pkg/contrib/arfile.cc

https://bugs.launchpad.net/bugs/1899193
https://security.netapp.com/advisory/ntap-20210108-0005/
https://usn.ubuntu.com/usn/usn-4667-1
https://www.debian.org/security/2020/dsa-4808
Comment 1 msiddiqu 2021-04-30 12:13:16 UTC 
Created apt tracking bugs for this issue:

Affects: fedora-all [bug 1955569]
Comment 3 Sergio Basto 2021-05-06 09:25:46 UTC 
from https://security-tracker.debian.org/tracker/CVE-2020-27350 

This issue affects: apt 1.2.32ubuntu0 versions prior to 1.2.32ubuntu0.2; 1.6.12ubuntu0 versions prior to 1.6.12ubuntu0.2; 2.0.2ubuntu0 versions prior to 2.0.2ubuntu0.2; 2.1.10ubuntu0 versions prior to 2.1.10ubuntu0.1;

Fedora 35	apt-2.1.20-1.fc35	
Fedora 34	apt-2.1.20-1.fc34	
Fedora 33	apt-2.1.20-1.fc33	
Fedora 32	apt-2.1.20-1.fc32


Why this bug was opened ?
Comment 4 Product Security DevOps Team 2021-05-11 20:33:46 UTC 
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2020-27350