CVE-2019-19906 — HIGH (7.5)

Q: How severe is CVE-2019-19906?

CVE-2019-19906 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2019-19906?

Check the references section above for vendor advisories and patch information. Affected products include: Cyrusimap Cyrus-Sasl, Debian Debian Linux, Canonical Ubuntu Linux, Fedoraproject Fedora, Redhat Jboss Enterprise Web Server.

Vulnerability Description

cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash is ultimately caused by an off-by-one error in _sasl_add_string in common.c in cyrus-sasl.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Cyrusimap	Cyrus-Sasl	< 2.1.28
Debian	Debian Linux	8.0
Canonical	Ubuntu Linux	12.04
Fedoraproject	Fedora	31
Redhat	Jboss Enterprise Web Server	2.0.0
Apple	Mac Os X	10.14.6
Redhat	Enterprise Linux	5.0
Redhat	Enterprise Linux Eus	8.4
Redhat	Enterprise Linux For Ibm Z Systems	8.0
Redhat	Enterprise Linux For Ibm Z Systems Eus	8.4
Redhat	Enterprise Linux For Power Little Endian	8.0
Redhat	Enterprise Linux For Power Little Endian Eus	8.4
Redhat	Enterprise Linux Server Aus	8.4
Redhat	Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions	8.4
Redhat	Enterprise Linux Server Tus	8.4
Redhat	Enterprise Linux Server Update Services For Sap Solutions	8.4
Apple	Ipados	13.6
Apple	Iphone Os	13.6
Apache	Bookkeeper	4.12.1
Centos	Centos	7.0

Related Weaknesses (CWE)

CWE-193 CWE-787

References

http://seclists.org/fulldisclosure/2020/Jul/23Mailing ListThird Party Advisory
http://seclists.org/fulldisclosure/2020/Jul/24Mailing ListThird Party Advisory
http://www.openwall.com/lists/oss-security/2022/02/23/4Mailing ListPatchRelease Notes
https://github.com/cyrusimap/cyrus-sasl/issues/587PatchThird Party Advisory
https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e3
https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8
https://lists.debian.org/debian-lts-announce/2019/12/msg00027.htmlMailing ListThird Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
https://seclists.org/bugtraq/2019/Dec/42Mailing ListThird Party Advisory
https://support.apple.com/kb/HT211288Third Party Advisory
https://support.apple.com/kb/HT211289Third Party Advisory
https://usn.ubuntu.com/4256-1/PatchThird Party Advisory
https://www.debian.org/security/2019/dsa-4591Third Party Advisory
https://www.openldap.org/its/index.cgi/Incoming?id=9123ExploitThird Party Advisory

FAQ

What is CVE-2019-19906?

CVE-2019-19906 is a vulnerability with a CVSS score of 7.5 (HIGH). cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash is ultimately caused by an...

How severe is CVE-2019-19906?

CVE-2019-19906 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-19906?

Check the references section above for vendor advisories and patch information. Affected products include: Cyrusimap Cyrus-Sasl, Debian Debian Linux, Canonical Ubuntu Linux, Fedoraproject Fedora, Redhat Jboss Enterprise Web Server.