CVE-2019-12900
CRITICAL severity · CVSS 9.8 · Out-of-bounds write
9.8CVSS CRITICAL
Summary
BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.
Impact & exploitability
Attack vectorNetwork
Attack complexityLow
Privileges requiredNone
User interactionNone
Confidentiality impactHigh
Integrity impactHigh
Availability impactHigh
Exploit probability (EPSS)8%
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products we track (1)
Recommendation
Apply the vendor fix promptly. Open any affected product above for its exact safe version.
Official patch: https://gitlab.com/federicomenaquintero/bzip2/commit/74de1e2e6ffc9d51ef9824db71a8ffee5962cdbc ↗
Additional information
- NVD record
- https://gitlab.com/federicomenaquintero/bzip2/commit/74de1e2e6ffc9d51ef9824db71a8ffee5962cdbcPatch
- http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00040.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00050.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00078.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00000.htmlAdvisory
- http://packetstormsecurity.com/files/153644/Slackware-Security-Advisory-bzip2-Updates.htmlAdvisory
- http://packetstormsecurity.com/files/153957/FreeBSD-Security-Advisory-FreeBSD-SA-19-18.bzip2.htmlAdvisory
- https://lists.apache.org/thread.html/ra0adb9653c7de9539b93cc8434143b655f753b9f60580ff260becb2b%40%3Cusers.kafka.apache.org%3E