CVE-2016-6318

🗓️ 07 Sep 2016 19:00:00Reported by Debian Security Bug TrackerType

debiancve

debiancve🔗 security-tracker.debian.org👁 28 Views

Stack-based buffer overflow in FascistGecosUser function in crackli

Reporter	Title	Published	Views	Family All 61
IBM Security Bulletins	Security Bulletin: Vulnerabilities in cracklib, dhcp, expat, libgcrypt and lighttpd affect IBM Flex System Chassis Management Module (CMM)	31 Jan 201902:25	–	ibm
AlpineLinux	CVE-2016-6318	7 Sep 201619:00	–	alpinelinux
CNVD	cracklib Local Stack Buffer Overflow Vulnerability	17 Aug 201600:00	–	cnvd
CVE	CVE-2016-6318	7 Sep 201619:00	–	cve
Cvelist	CVE-2016-6318	7 Sep 201619:00	–	cvelist
Debian	[SECURITY] [DLA 2220-1] cracklib2 security update	24 May 202017:44	–	debian
Debian	[SECURITY] [DLA 599-1] cracklib2 security update	20 Aug 201616:58	–	debian
Tenable Nessus	Debian DLA-2220-1 : cracklib2 security update	26 May 202000:00	–	nessus
Tenable Nessus	Debian DLA-599-1 : cracklib2 security update	22 Aug 201600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP2 : cracklib (EulerOS-SA-2019-2439)	4 Dec 201900:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Debian	11	any	cracklib2	2.9.2-2	cracklib2_2.9.2-2_any.deb
Debian	12	any	cracklib2	2.9.2-2	cracklib2_2.9.2-2_any.deb
Debian	13	any	cracklib2	2.9.2-2	cracklib2_2.9.2-2_any.deb
Debian	14	any	cracklib2	2.9.2-2	cracklib2_2.9.2-2_any.deb
Debian	999	any	cracklib2	2.9.2-2	cracklib2_2.9.2-2_any.deb

07 Sep 2016 19:00Current

6.2Medium risk

Vulners AI Score6.2

CVSS 27.2

CVSS 3.17.8

EPSS0.00747

cve-2016-6318 buffer overflow denial of service privilege escalation cracklib