wine-bugs July 2024

wine-bugs@winehq.org

1 participants
1152 discussions

[Bug 56590] New: Buffer Overflow in jpeg_decoder_initialize
by WineHQ Bugzilla 02 Jul '24

02 Jul '24

https://bugs.winehq.org/show_bug.cgi?id=56590 Bug ID: 56590 Summary: Buffer Overflow in jpeg_decoder_initialize Product: Wine Version: 9.7 Hardware: x86-64 OS: Linux Status: UNCONFIRMED Severity: major Priority: P2 Component: windowscodecs Assignee: wine-bugs(a)winehq.org Reporter: franco(a)blackwinghq.com Distribution: --- The vulnerable jpeg_decoder_initialize function in file libjpeg.c (https://github.com/wine-mirror/wine/blob/master/dlls/windowscodecs/libjpeg.…) is used to decompress jpegs and create a raw bitmap version of the image. In jpeg_decoder_initialize, the values for cinfo.output_width and cinfo.output_height are retrieved directly from a jpeg file's header. cinfo.output_width and cinfo.output_height can be manipulated by editing the header of the jpeg file being processed. They are two bytes each in the image's header so their values can range from 0x0000 to 0xFFFF. These variables are multiplied with frame.bpp. When these three values are multiplied together they can exceed the limit of a 32-bit unsigned integer, leading to an integer overflow vulnerability. This product is used to set the size of the image_data buffer, which will store the decompressed jpeg (https://github.com/wine-mirror/wine/blob/master/dlls/windowscodecs/libjpeg.…). When the sizing arguments overflow, the buffer becomes too small to store the decompressed data. The program writes the decompressed image to the buffer using the jpeg_read_scanlines function. The function ends up writing to out-of-bounds memory due to the buffer’s small size (https://github.com/wine-mirror/wine/blob/master/dlls/windowscodecs/libjpeg.…). This causes data in memory adjacent to the buffer to be overwritten. An attacker is in control of the image's height, width, and contents. This allows an attacker to craft an exploit to overwrite data in memory with data they control. -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 5

[Bug 56668] New: Visual Studio 2022 Community Edition doesn't install in quiet mode (Mono.Security.X509.X509Store.get_Crls)
by WineHQ Bugzilla 02 Jul '24

02 Jul '24

https://bugs.winehq.org/show_bug.cgi?id=56668 Bug ID: 56668 Summary: Visual Studio 2022 Community Edition doesn't install in quiet mode (Mono.Security.X509.X509Store.get_Crls) Product: Wine Version: 9.8 Hardware: x86-64 URL: https://visualstudio.microsoft.com/vs/community/ OS: Linux Status: NEW Keywords: download, Installer Severity: normal Priority: P2 Component: mscoree Assignee: wine-bugs(a)winehq.org Reporter: austinenglish(a)gmail.com Distribution: Debian Created attachment 76454 --> https://bugs.winehq.org/attachment.cgi?id=76454 installer log austin@debian:~/Downloads$ du -sh VisualStudioSetup.exe 3.9M VisualStudioSetup.exe austin@debian:~/Downloads$ sha1sum VisualStudioSetup.exe 5d0923c690a40a5113a0dec506c14a412b4ee2e4 VisualStudioSetup.exe The installer will fail early if run normally / with the GUI (see bug 56644). If quiet mode is used: wine VisualStudioSetup-2022.exe --quiet --noweb --norestart --installPath "%ProgramFiles%\\Microsoft Visual Studio\\2022" --add Microsoft.Component.MSBuild It gets a bit further, but then fails to download anything. -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 1

[Bug 56849] New: [Regression] Ableton Live 12 undo history broken
by WineHQ Bugzilla 02 Jul '24

02 Jul '24

https://bugs.winehq.org/show_bug.cgi?id=56849 Bug ID: 56849 Summary: [Regression] Ableton Live 12 undo history broken Product: Wine Version: 9.11 Hardware: x86-64 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: -unknown Assignee: wine-bugs(a)winehq.org Reporter: tileacids946(a)gmail.com Distribution: --- After updating to Wine 9.11, Ableton Live complains about not being able to access the undo history file: "Live cannot access the undo history file and is switching to a memory based undo" -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 1

[Bug 56908] New: ASCII Art Studio - hangs after clicking on New icon
by WineHQ Bugzilla 01 Jul '24

01 Jul '24

https://bugs.winehq.org/show_bug.cgi?id=56908 Bug ID: 56908 Summary: ASCII Art Studio - hangs after clicking on New icon Product: Wine Version: 9.12 Hardware: x86-64 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: -unknown Assignee: wine-bugs(a)winehq.org Reporter: kyle.kcsoftwares(a)gmail.com Distribution: --- Created attachment 76727 --> https://bugs.winehq.org/attachment.cgi?id=76727 ascii freeze Download ASCII Art Studio from https://jira.reactos.org/browse/CORE-19654 Install click on "new" icon in tool bar Freezes and "top" shows 100% CPU used by this process. -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 3

[Bug 56906] New: RichEd20 - White Background in pwSafe about window
by WineHQ Bugzilla 01 Jul '24

01 Jul '24

https://bugs.winehq.org/show_bug.cgi?id=56906 Bug ID: 56906 Summary: RichEd20 - White Background in pwSafe about window Product: Wine Version: 9.11 Hardware: x86-64 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: richedit Assignee: wine-bugs(a)winehq.org Reporter: kyle.kcsoftwares(a)gmail.com Distribution: --- Created attachment 76726 --> https://bugs.winehq.org/attachment.cgi?id=76726 pwsaferichedwhite Ubuntu 24.04 / Wine 9.11 https://sourceforge.net/projects/passwordsafe/files/Windows/3.3x/3.39.0/ Unzip all files wine pwsafe Safe Combinaison Entry, press OK Main dialog > ? > About 2 lines are shown with white background. This is a RichEd20. Similar bug seen in ReactOS : https://jira.reactos.org/browse/CORE-18861 showing expected result from Win2K3 -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 2

[Bug 21227] New: cmd doesn't echo redirection like native
by wine-bugs＠winehq.org 01 Jul '24

01 Jul '24

http://bugs.winehq.org/show_bug.cgi?id=21227 Summary: cmd doesn't echo redirection like native Product: Wine Version: 1.1.35 Platform: x86 OS/Version: Linux Status: NEW Keywords: download, source, testcase Severity: normal Priority: P3 Component: programs AssignedTo: wine-bugs(a)winehq.org ReportedBy: dank(a)kegel.com Native cmd echoes commands after some canonicalization has been done on their redirects. A batch file containing dir 1> ok dir > bad dir | bad dir > blah > bad echoes as dir 1> ok dir 1> bad dir | bad dir 1> bad (note the extra space inserted before the > or |). Wine's cmd doesn't currently do this, but it could probably do so without too much trouble; it already collects redirects separately for each command. For the moment I'll probably put a kludge in the cmd conformance test runner to compensate. -- Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email Do not reply to this email, post in Bugzilla using the above URL to reply. ------- You are receiving this mail because: ------- You are watching all bug changes.

2 15

[Bug 54335] New: fp.exe has no mouse, resize does not work, escape string don't work
by WineHQ Bugzilla 01 Jul '24

01 Jul '24

https://bugs.winehq.org/show_bug.cgi?id=54335 Bug ID: 54335 Summary: fp.exe has no mouse, resize does not work, escape string don't work Product: Wine Version: 8.0-rc4 Hardware: x86-64 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: -unknown Assignee: wine-bugs(a)winehq.org Reporter: margers.roked(a)inbox.lv Distribution: --- fp.exe download link http://downloads.freepascal.org/fpc/dist/3.2.2/i386-win32/fpc-3.2.2.i386-wi… Fail to start from shortcut/launcher. Starting form terminal: 1) has no mouse support 2) not all escape strings work for example Alt+F does not open File menu 3) resize terminal window does not resize program window accordingly. Starting from cmd has the same problems + after exit cmd is broken -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 5

[Bug 56909] New: ExEn-V2 Generic Simulator - "Garbage" displayed on 1st line
by WineHQ Bugzilla 01 Jul '24

01 Jul '24

https://bugs.winehq.org/show_bug.cgi?id=56909 Bug ID: 56909 Summary: ExEn-V2 Generic Simulator - "Garbage" displayed on 1st line Product: Wine Version: 9.12 Hardware: x86-64 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: -unknown Assignee: wine-bugs(a)winehq.org Reporter: kyle.kcsoftwares(a)gmail.com Distribution: --- Created attachment 76728 --> https://bugs.winehq.org/attachment.cgi?id=76728 exen ExEn-V2 Generic Simulator from https://alien256.narod.ru/EMULATOR.RAR "Garbage" displayed on 1st line while it should display "Games Menu" in red See : https://jira.reactos.org/browse/CORE-18836 -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 0

[Bug 24026] New: Tab completion for cmd
by wine-bugs＠winehq.org 01 Jul '24

01 Jul '24

http://bugs.winehq.org/show_bug.cgi?id=24026 Summary: Tab completion for cmd Product: Wine Version: 1.3.0 Platform: x86 OS/Version: Linux Status: UNCONFIRMED Severity: enhancement Priority: P2 Component: cmd AssignedTo: wine-bugs(a)winehq.org ReportedBy: andrew.millington(a)gmail.com Pressing tab only creates a space but should complete a file name in the same way that Windows does with their Command Prompt. -- Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email Do not reply to this email, post in Bugzilla using the above URL to reply. ------- You are receiving this mail because: ------- You are watching all bug changes.

2 16

[Bug 56907] New: wineconsole, FreePascal text mode IDE and horizontal, vertical scrollbars
by WineHQ Bugzilla 01 Jul '24

01 Jul '24

https://bugs.winehq.org/show_bug.cgi?id=56907 Bug ID: 56907 Summary: wineconsole, FreePascal text mode IDE and horizontal, vertical scrollbars Product: Wine Version: 9.0 Hardware: x86-64 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: -unknown Assignee: wine-bugs(a)winehq.org Reporter: margers.roked(a)inbox.lv Distribution: --- Free Pascal text mode IDE when changing Video Mode sometimes horizontal, vertical scrollbars appear while unnecessary. Reproduce: 1. open fp.exe in wineconsole (scrollbars might appear while not needed) 2. Options -> Environment -> Preferences -> change: Video Mode (scrollbars might appear while not needed) 3. File -> Command shell, "exit" (scrollbars might appear while not needed, or disappear ) Free Pascal available at https://sourceforge.net/projects/freepascal/files/Win32/3.2.2/ fpc-3.2.2.i386-win32.exe after installation run fp.exe -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 0

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

wine-bugs July 2024