[email protected]CVE-2016-1684

HistoryJun 05, 2016 - 11:59 p.m.

CVE-2016-1684

2016-06-0523:59:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

libxslt

cve-2016-1684

integer overflow

denial of service

google chrome

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.043 Low

EPSS

Percentile

92.2%

JSON

numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51.0.2704.63, mishandles the i format token for xsl:number data, which allows remote attackers to cause a denial of service (integer overflow or resource consumption) or possibly have unspecified other impact via a crafted document.

CPENameOperatorVersion
google:chromegoogle chromele50.0.2661.102
xmlsoft:libxsltxmlsoft libxsltle1.1.28

CPE	Name	Operator	Version
google:chrome	google chrome	le	50.0.2661.102
xmlsoft:libxslt	xmlsoft libxslt	le	1.1.28

References

googlechromereleases.blogspot.com/2016/05/stable-channel-update_25.html

lists.apple.com/archives/security-announce/2016/Jul/msg00000.html

lists.apple.com/archives/security-announce/2016/Jul/msg00001.html

lists.apple.com/archives/security-announce/2016/Jul/msg00002.html

lists.apple.com/archives/security-announce/2016/Jul/msg00003.html

lists.apple.com/archives/security-announce/2016/Jul/msg00005.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00062.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00063.html

lists.opensuse.org/opensuse-security-announce/2016-06/msg00005.html

www.debian.org/security/2016/dsa-3590

www.debian.org/security/2016/dsa-3605

www.securityfocus.com/bid/90876

www.securitytracker.com/id/1035981

www.ubuntu.com/usn/USN-2992-1

access.redhat.com/errata/RHSA-2016:1190

bugzilla.redhat.com/show_bug.cgi?id=1340017

crbug.com/583171

git.gnome.org/browse/libxslt/commit/?id=91d0540ac9beaa86719a05b749219a69baa0dd8d

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SK4YNISS22MJY22YX5I6V2U63QZAUEHA/

security.gentoo.org/glsa/201607-07

support.apple.com/HT206899

support.apple.com/HT206901

support.apple.com/HT206902

support.apple.com/HT206903

support.apple.com/HT206904

support.apple.com/HT206905

Social References

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.043 Low

EPSS

Percentile

92.2%

JSON

Related for CVE-2016-1684

veracode2 ubuntucve1 debiancve1 prion1 redhatcve1 freebsd1 mageia1 openvas23 nessus24 debian5 osv2 ubuntu2 fedora1 rosalinux1 apple12 kaspersky1 threatpost1 redhat1 suse3 archlinux1 gentoo1 chrome1 tenable1