ID CVE-2016-4574
Summary Off-by-one error in the append_utf8_value function in the DN decoder (dn.c) in Libksba before 1.3.4 allows remote attackers to cause a denial of service (out-of-bounds read) via invalid utf-8 encoded data. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-4356.
References
Vulnerable Configurations
  • Libksba Project Libskba 1.3.3
    cpe:2.3:a:libksba_project:libskba:1.3.3
  • Canonical Ubuntu Linux 12.04 LTS
    cpe:2.3:o:canonical:ubuntu_linux:12.04:-:-:-:lts
  • Canonical Ubuntu Linux 14.04 LTS (Long-Term Support)
    cpe:2.3:o:canonical:ubuntu_linux:14.04:-:-:-:lts
  • Canonical Ubuntu Linux 15.10
    cpe:2.3:o:canonical:ubuntu_linux:15.10
  • Canonical Ubuntu Linux 16.04 LTS (Long-Term Support)
    cpe:2.3:o:canonical:ubuntu_linux:16.04:-:-:-:lts
  • openSUSE Leap 42.1
    cpe:2.3:o:opensuse:leap:42.1
  • OpenSUSE 13.2
    cpe:2.3:o:opensuse:opensuse:13.2
CVSS
Base: 5.0 (as of 17-06-2016 - 20:44)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
  • NASL family SuSE Local Security Checks
    NASL id SUSE_SU-2016-1510-1.NASL
    description This update for libksba fixes the following issues : - CVE-2016-4579: Out-of-bounds read in _ksba_ber_parse_tl() - CVE-2016-4574: two OOB read access bugs (remote DoS) (bsc#979261) Also adding reliability fixes from v1.3.4. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-29
    plugin id 91654
    published 2016-06-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=91654
    title SUSE SLED12 / SLES12 Security Update : libksba (SUSE-SU-2016:1510-1)
  • NASL family Amazon Linux Local Security Checks
    NASL id ALA_ALAS-2016-712.NASL
    description The following security-related issues were resolved : Incomplete fix for CVE-2016-4356 (CVE-2016-4574) Out-of-bounds read in _ksba_ber_parse_tl (CVE-2016-4579)
    last seen 2018-09-01
    modified 2018-04-18
    plugin id 91471
    published 2016-06-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=91471
    title Amazon Linux AMI : libksba (ALAS-2016-712)
  • NASL family SuSE Local Security Checks
    NASL id OPENSUSE-2016-697.NASL
    description This update for libksba fixes the following issues : - CVE-2016-4579: Out-of-bounds read in _ksba_ber_parse_tl() - CVE-2016-4574: two OOB read access bugs (remote DoS) (bsc#979261) Also adding reliability fixes from v1.3.4. This update was imported from the SUSE:SLE-12:Update update project.
    last seen 2019-02-21
    modified 2016-10-13
    plugin id 91532
    published 2016-06-09
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=91532
    title openSUSE Security Update : libksba (openSUSE-2016-697)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2016-28A56C76C1.NASL
    description Security fix for minor security issues CVE-2016-4574, CVE-2016-4579. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2016-10-18
    plugin id 92072
    published 2016-07-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=92072
    title Fedora 22 : libksba (2016-28a56c76c1)
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-2982-1.NASL
    description Hanno Bock discovered that Libksba incorrectly handled decoding certain BER data. An attacker could use this issue to cause Libksba to crash, resulting in a denial of service. This issue only applied to Ubunt 12.04 LTS and Ubuntu 14.04 LTS. (CVE-2016-4353) Hanno Bock discovered that Libksba incorrectly handled decoding certain BER data. An attacker could use this issue to cause Libksba to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only applied to Ubunt 12.04 LTS and Ubuntu 14.04 LTS. (CVE-2016-4354, CVE-2016-4355) Hanno Bock discovered that Libksba incorrectly handled incorrect utf-8 strings when decoding certain DN data. An attacker could use this issue to cause Libksba to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only applied to Ubunt 12.04 LTS and Ubuntu 14.04 LTS. (CVE-2016-4356) Pascal Cuoq discovered that Libksba incorrectly handled incorrect utf-8 strings when decoding certain DN data. An attacker could use this issue to cause Libksba to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2016-4574) Pascal Cuoq discovered that Libksba incorrectly handled decoding certain data. An attacker could use this issue to cause Libksba to crash, resulting in a denial of service. (CVE-2016-4579). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-12-01
    plugin id 91220
    published 2016-05-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=91220
    title Ubuntu 12.04 LTS / 14.04 LTS / 15.10 / 16.04 LTS : libksba vulnerabilities (USN-2982-1)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2016-1BCEC8B80D.NASL
    description Security fix for minor security issues CVE-2016-4574, CVE-2016-4579. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2016-10-18
    plugin id 92064
    published 2016-07-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=92064
    title Fedora 24 : libksba (2016-1bcec8b80d)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2016-FD26F713E7.NASL
    description Security fix for minor security issues CVE-2016-4574, CVE-2016-4579. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2016-10-18
    plugin id 92214
    published 2016-07-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=92214
    title Fedora 23 : libksba (2016-fd26f713e7)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_SU-2016-1509-1.NASL
    description This update for libksba fixes the following issues : - CVE-2016-4579: Out-of-bounds read in _ksba_ber_parse_tl() - CVE-2016-4574: two OOB read access bugs (remote DoS) (bsc#979261) Also adding reliability fixes from v1.3.4. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-29
    plugin id 91653
    published 2016-06-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=91653
    title SUSE SLES11 Security Update : libksba (SUSE-SU-2016:1509-1)
  • NASL family SuSE Local Security Checks
    NASL id OPENSUSE-2016-624.NASL
    description This update for libksba fixes the following issues : Security issue fixed : - boo#979261: OOB read access bugs remote DoS - CVE-2016-4574: off-by-one OOB read access (incomplete fix for CVE-2016-4356)
    last seen 2019-02-21
    modified 2016-10-13
    plugin id 91289
    published 2016-05-23
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=91289
    title openSUSE Security Update : libksba (openSUSE-2016-624)
refmap via4
confirm http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git;a=commit;h=6be61daac047d8e6aa941eb103f8e71a1d4e3c75
mlist
  • [oss-security] 20160510 Re: CVE request: three issues in libksba
  • [oss-security] 20160510 Re: Re: CVE request: three issues in libksba
suse
  • openSUSE-SU-2016:1370
  • openSUSE-SU-2016:1525
ubuntu USN-2982-1
Last major update 20-06-2016 - 08:35
Published 13-06-2016 - 15:59
Last modified 30-10-2018 - 12:27
Back to Top