CVE-2014-9765 - OpenCVE

Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Canonical	Ubuntu Linux
Debian	Debian Linux
Xdelta	Xdelta3
Opensuse	Opensuse

Configuration 1 [-]

OR	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:15.10:::::::*

Configuration 2 [-]

OR	cpe:2.3:o:debian:debian_linux:7.0:::::::*
	cpe:2.3:o:debian:debian_linux:8.0:::::::*

Configuration 3 [-]

cpe:2.3:a:xdelta:xdelta3:*:*:*:*:*:*:*:*

Configuration 4 [-]

OR	cpe:2.3:o:opensuse:opensuse:13.1:::::::*
	cpe:2.3:o:opensuse:opensuse:13.2:::::::*

References

Link	Resource
http://lists.opensuse.org/opensuse-updates/2016-02/msg00125.html
http://lists.opensuse.org/opensuse-updates/2016-02/msg00131.html
http://www.debian.org/security/2016/dsa-3484
http://www.openwall.com/lists/oss-security/2016/02/08/1
http://www.openwall.com/lists/oss-security/2016/02/08/2
http://www.securityfocus.com/bid/83109
http://www.ubuntu.com/usn/USN-2901-1
https://github.com/jmacd/xdelta-devel/commit/ef93ff74203e030073b898c05e8b4860b5d09ef2
https://security.gentoo.org/glsa/201701-40

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: debian

Published: 2016-04-19T21:00:00

Updated: 2017-06-30T16:57:01

Reserved: 2016-02-08T00:00:00

Link: CVE-2014-9765

JSON object: View

NVD Information

Status : Modified

Published: 2016-04-19T21:59:01.100

Modified: 2018-10-30T16:27:35.843

Link: CVE-2014-9765

JSON object: View

Redhat Information

No data.

CWE

CWE-119

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-10-12T00:00:00", "descriptions": [{"lang": "en", "value": "Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-06-30T16:57:01", "orgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5", "shortName": "debian"}, "references": [{"name": "[oss-security] 20160208 Re: CVE request - buffer overflow in xdelta3 before 3.0.9", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2016/02/08/2"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/jmacd/xdelta-devel/commit/ef93ff74203e030073b898c05e8b4860b5d09ef2"}, {"name": "USN-2901-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/USN-2901-1"}, {"name": "DSA-3484", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2016/dsa-3484"}, {"name": "openSUSE-SU-2016:0524", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00125.html"}, {"name": "GLSA-201701-40", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201701-40"}, {"name": "83109", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/83109"}, {"name": "openSUSE-SU-2016:0530", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00131.html"}, {"name": "[oss-security] 20160208 CVE request - buffer overflow in xdelta3 before 3.0.9", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2016/02/08/1"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@debian.org", "ID": "CVE-2014-9765", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20160208 Re: CVE request - buffer overflow in xdelta3 before 3.0.9", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2016/02/08/2"}, {"name": "https://github.com/jmacd/xdelta-devel/commit/ef93ff74203e030073b898c05e8b4860b5d09ef2", "refsource": "CONFIRM", "url": "https://github.com/jmacd/xdelta-devel/commit/ef93ff74203e030073b898c05e8b4860b5d09ef2"}, {"name": "USN-2901-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-2901-1"}, {"name": "DSA-3484", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2016/dsa-3484"}, {"name": "openSUSE-SU-2016:0524", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00125.html"}, {"name": "GLSA-201701-40", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201701-40"}, {"name": "83109", "refsource": "BID", "url": "http://www.securityfocus.com/bid/83109"}, {"name": "openSUSE-SU-2016:0530", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00131.html"}, {"name": "[oss-security] 20160208 CVE request - buffer overflow in xdelta3 before 3.0.9", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2016/02/08/1"}]}}}}, "cveMetadata": {"assignerOrgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5", "assignerShortName": "debian", "cveId": "CVE-2014-9765", "datePublished": "2016-04-19T21:00:00", "dateReserved": "2016-02-08T00:00:00", "dateUpdated": "2017-06-30T16:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*", "matchCriteriaId": "E88A537F-F4D0-46B9-9E37-965233C2A355", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:xdelta:xdelta3:*:*:*:*:*:*:*:*", "matchCriteriaId": "251BEFE8-AC5F-4A36-AC30-8C498B8F5517", "versionEndIncluding": "3.0.8", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*", "matchCriteriaId": "A10BC294-9196-425F-9FB0-B1625465B47F", "vulnerable": true}, {"criteria": "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*", "matchCriteriaId": "03117DF1-3BEC-4B8D-AD63-DBBDB2126081", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file."}, {"lang": "es", "value": "Desbordamiento de buffer en la funci\u00f3n main_get_appheader en xdelta3-main.h en xdelta3 en versiones anteriores a 3.0.9 permite a atacantes remotos ejecutar c\u00f3dgo arbitrario a trav\u00e9s de un archivo de entrada manipulado."}], "id": "CVE-2014-9765", "lastModified": "2018-10-30T16:27:35.843", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-04-19T21:59:01.100", "references": [{"source": "security@debian.org", "url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00125.html"}, {"source": "security@debian.org", "url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00131.html"}, {"source": "security@debian.org", "url": "http://www.debian.org/security/2016/dsa-3484"}, {"source": "security@debian.org", "url": "http://www.openwall.com/lists/oss-security/2016/02/08/1"}, {"source": "security@debian.org", "url": "http://www.openwall.com/lists/oss-security/2016/02/08/2"}, {"source": "security@debian.org", "url": "http://www.securityfocus.com/bid/83109"}, {"source": "security@debian.org", "url": "http://www.ubuntu.com/usn/USN-2901-1"}, {"source": "security@debian.org", "url": "https://github.com/jmacd/xdelta-devel/commit/ef93ff74203e030073b898c05e8b4860b5d09ef2"}, {"source": "security@debian.org", "url": "https://security.gentoo.org/glsa/201701-40"}], "sourceIdentifier": "security@debian.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}