ID CVE-2016-5823
Summary The icalproperty_new_clone function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service (use-after-free) via a crafted ics file.
References
Vulnerable Configurations
  • cpe:2.3:a:libical_project:libical:0.47:*:*:*:*:*:*:*
    cpe:2.3:a:libical_project:libical:0.47:*:*:*:*:*:*:*
  • cpe:2.3:a:libical_project:libical:1.0:*:*:*:*:*:*:*
    cpe:2.3:a:libical_project:libical:1.0:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 02-04-2019 - 07:29)
Impact:
Exploitability:
CWE CWE-416
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:P
refmap via4
gentoo GLSA-201904-02
mlist [oss-security] 20160625 Re: libical 0.47 SEGV on unknown address
Last major update 02-04-2019 - 07:29
Published 27-01-2017 - 22:59
Last modified 02-04-2019 - 07:29
Back to Top