CVE-2015-8918 — HIGH (7.5) — White Hats Nepal

Q: What is CVE-2015-8918?

CVE-2015-8918 is a vulnerability with a CVSS score of 7.5 (HIGH). The archive_string_append function in archive_string.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted cab files, related to "overlapping memcpy."

Q: How severe is CVE-2015-8918?

CVE-2015-8918 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2015-8918?

Check the references section above for vendor advisories and patch information. Affected products include: Novell Suse Linux Enterprise Software Development Kit, Novell Suse Linux Enterprise Desktop, Novell Suse Linux Enterprise Server, Libarchive Libarchive.

Vulnerability Description

The archive_string_append function in archive_string.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted cab files, related to "overlapping memcpy."

CVSS Score

7.5

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Novell	Suse Linux Enterprise Software Development Kit	12.0
Novell	Suse Linux Enterprise Desktop	12.0
Novell	Suse Linux Enterprise Server	12.0
Libarchive	Libarchive	<= 3.1.901a

Related Weaknesses (CWE)

CWE-119

References

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00025.htmlThird Party Advisory
http://www.openwall.com/lists/oss-security/2016/06/17/2Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/06/17/5Third Party Advisory
http://www.securityfocus.com/bid/91300
https://blog.fuzzing-project.org/47-Many-invalid-memory-access-issues-in-libarchThird Party Advisory
https://github.com/libarchive/libarchive/issues/506PatchThird Party Advisory
https://security.gentoo.org/glsa/201701-03
http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00025.htmlThird Party Advisory
http://www.openwall.com/lists/oss-security/2016/06/17/2Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/06/17/5Third Party Advisory
http://www.securityfocus.com/bid/91300
https://blog.fuzzing-project.org/47-Many-invalid-memory-access-issues-in-libarchThird Party Advisory
https://github.com/libarchive/libarchive/issues/506PatchThird Party Advisory
https://security.gentoo.org/glsa/201701-03

FAQ

What is CVE-2015-8918?

CVE-2015-8918 is a vulnerability with a CVSS score of 7.5 (HIGH). The archive_string_append function in archive_string.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted cab files, related to "overlapping memcpy."

How severe is CVE-2015-8918?

CVE-2015-8918 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-8918?

Check the references section above for vendor advisories and patch information. Affected products include: Novell Suse Linux Enterprise Software Development Kit, Novell Suse Linux Enterprise Desktop, Novell Suse Linux Enterprise Server, Libarchive Libarchive.