Lucene search

K
ubuntucveUbuntu.comUB:CVE-2016-8622
HistoryNov 02, 2016 - 12:00 a.m.

CVE-2016-8622

2016-11-0200:00:00
ubuntu.com
ubuntu.com
7

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.013 Low

EPSS

Percentile

85.4%

The URL percent-encoding decode function in libcurl before 7.51.0 is called
curl_easy_unescape. Internally, even if this function would be made to
allocate a unscape destination buffer larger than 2GB, it would return that
new length in a signed 32 bit integer variable, thus the length would get
either just truncated or both truncated and turned negative. That could
then lead to libcurl writing outside of its heap based buffer.

OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchcurl< 7.22.0-3ubuntu4.17UNKNOWN
ubuntu14.04noarchcurl< 7.35.0-1ubuntu2.10UNKNOWN
ubuntu16.04noarchcurl< 7.47.0-1ubuntu2.2UNKNOWN
ubuntu16.10noarchcurl< 7.50.1-1ubuntu1.1UNKNOWN
ubuntu17.04noarchcurl< 7.50.1-1ubuntu2UNKNOWN

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.013 Low

EPSS

Percentile

85.4%

Related for UB:CVE-2016-8622