Vulnerability Name:

CVE-2018-5345 (CCN-137606)

Assigned:2017-12-19
Published:2017-12-19
Updated:2020-08-24
Summary:A stack-based buffer overflow within GNOME gcab through 0.7.4 can be exploited by malicious attackers to cause a crash or, potentially, execute arbitrary code via a crafted .cab file.
CVSS v3 Severity:7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
6.9 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)
4.7 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:U/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
5.3 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)
4.7 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:U/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
4.3 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-787
CWE-121
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2018-5345

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:0350

Source: CCN
Type: Red Hat Bugzilla – Bug 1527296
(CVE-2018-5345) CVE-2018-5345 gcab: Extracting malformed .cab files causes stack smashing potentially leading to arbitrary code exectuion

Source: MISC
Type: Issue Tracking, Third Party Advisory, VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1527296

Source: XF
Type: UNKNOWN
gnome-gcab-cve20185345-bo(137606)

Source: CCN
Type: GNOME gcab GIT Repository
GNOME gcab

Source: UBUNTU
Type: Third Party Advisory
USN-3546-1

Source: DEBIAN
Type: Third Party Advisory
DSA-4095

Vulnerable Configuration:Configuration 1:
  • cpe:/o:fedoraproject:fedora:-:*:*:*:*:*:*:*

  • Configuration 2:
  • cpe:/a:gnome:gcab:*:*:*:*:*:*:*:* (Version <= 0.7.4)

  • Configuration 3:
  • cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
  • OR cpe:/o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*

  • Configuration 4:
  • cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

  • Configuration 5:
  • cpe:/o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

  • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

  • Configuration RedHat 2:
  • cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

  • Configuration RedHat 3:
  • cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

  • Configuration RedHat 4:
  • cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

  • Configuration RedHat 5:
  • cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:gnome:gcab:0.7.4:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20185345
    V
    CVE-2018-5345
    2023-06-22
    oval:org.opensuse.security:def:7890
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2023-06-12
    oval:org.opensuse.security:def:626
    P
    Security update for kubernetes1.18 (Moderate) (in QA)
    2022-09-27
    oval:org.opensuse.security:def:737
    P
    Security update for ImageMagick (Moderate)
    2022-09-06
    oval:org.opensuse.security:def:3272
    P
    libunwind-1.1-11.3.1 on GA media (Moderate)
    2022-06-28
    oval:org.opensuse.security:def:94902
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:1073
    P
    Security update for tiff (Important)
    2022-05-30
    oval:org.opensuse.security:def:1185
    P
    Security update for dpkg (Low) (in QA)
    2022-05-27
    oval:org.opensuse.security:def:1318
    P
    Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP3) (Important)
    2022-04-24
    oval:org.opensuse.security:def:1657
    P
    Security update for subversion (Important)
    2022-04-12
    oval:org.opensuse.security:def:100725
    P
    (Important)
    2022-03-30
    oval:org.opensuse.security:def:1541
    P
    Security update for MozillaThunderbird (Important)
    2022-03-21
    oval:org.opensuse.security:def:962
    P
    Security update for vim (Important)
    2022-03-04
    oval:org.opensuse.security:def:1429
    P
    Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP3) (Critical)
    2022-02-17
    oval:org.opensuse.security:def:112271
    P
    gcab-1.4-2.9 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:69943
    P
    Security update for dnsmasq (Moderate)
    2021-10-27
    oval:org.opensuse.security:def:105797
    P
    gcab-1.4-2.9 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:71224
    P
    libICE-devel-1.0.9-1.25 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:47848
    P
    perl-Archive-Zip-1.34-3.3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47394
    P
    libpng15-15-1.5.22-9.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47147
    P
    rsync-3.1.0-12.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48146
    P
    liblzo2-2-2.08-1.13 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47719
    P
    libicu-doc-52.1-8.7.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47162
    P
    syslog-service-2.0-778.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48273
    P
    policycoreutils-2.5-10.3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47959
    P
    automake-1.13.4-6.2 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47476
    P
    procmail-3.22-267.12 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47258
    P
    fuse-2.9.3-5.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48257
    P
    pam_ssh-2.0-1.39 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47700
    P
    libdcerpc-binding0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47273
    P
    gpgme-1.5.1-1.11 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48062
    P
    lftp-4.7.4-3.6.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47587
    P
    curl-7.60.0-2.11 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47148
    P
    rsyslog-8.4.0-14.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48208
    P
    libtirpc-netconfig-1.0.1-17.13.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47811
    P
    libwireshark9-2.4.9-48.29.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47283
    P
    gv-3.7.4-1.36 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48304
    P
    screen-4.0.4-23.3.3 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48173
    P
    libpng15-15-1.5.22-9.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47608
    P
    file-5.22-10.6.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47259
    P
    gd-2.1.0-23.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48319
    P
    systemtap-3.0-20.11 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:62746
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:101152
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:72465
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:67771
    P
    Security update for the Linux Kernel (Live Patch 18 for SLE 15) (Important)
    2021-06-18
    oval:org.opensuse.security:def:64524
    P
    Security update for ucode-intel (Important)
    2021-06-10
    oval:org.opensuse.security:def:48415
    P
    fetchmail-6.3.26-12.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48375
    P
    automake-1.13.4-6.2 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48384
    P
    clamav-0.99.2-25.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48486
    P
    libdcerpc-atsvc0-4.2.4-26.2 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:71111
    P
    tcpdump-4.9.2-1.31 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:94012
    P
    (Low)
    2021-03-29
    oval:org.opensuse.security:def:49460
    P
    Security update for php74 (Important)
    2021-02-19
    oval:org.opensuse.security:def:66692
    P
    Security update for the Linux Kernel (Important)
    2020-12-08
    oval:org.opensuse.security:def:116949
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:72126
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62407
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:89868
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:72237
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:103523
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62518
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:72349
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:107391
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62630
    P
    gcab-1.1-1.15 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:49514
    P
    gcab on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64437
    P
    Security update for xorg-x11-server (Important)
    2020-12-01
    oval:org.opensuse.security:def:73265
    P
    nfs-client on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:67871
    P
    gcab on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49349
    P
    unzip on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49626
    P
    gcab on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:66600
    P
    ppc64-diag on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:70048
    P
    gcab on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:73383
    P
    gcab on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49403
    P
    gcab on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49572
    P
    libpotrace0 on GA media (Moderate)
    2020-12-01
    oval:com.redhat.rhsa:def:20180350
    P
    RHSA-2018:0350: gcab security update (Important)
    2018-02-26
    oval:com.ubuntu.xenial:def:201853450000000
    V
    CVE-2018-5345 on Ubuntu 16.04 LTS (xenial) - high.
    2018-01-12
    oval:com.ubuntu.artful:def:20185345000
    V
    CVE-2018-5345 on Ubuntu 17.10 (artful) - high.
    2018-01-11
    oval:com.ubuntu.xenial:def:20185345000
    V
    CVE-2018-5345 on Ubuntu 16.04 LTS (xenial) - high.
    2018-01-11
    BACK
    fedoraproject fedora -
    gnome gcab *
    canonical ubuntu linux 16.04
    canonical ubuntu linux 17.10
    debian debian linux 9.0
    redhat enterprise linux desktop 7.0
    redhat enterprise linux server 7.0
    redhat enterprise linux server aus 7.4
    redhat enterprise linux server aus 7.6
    redhat enterprise linux server eus 7.4
    redhat enterprise linux server eus 7.5
    redhat enterprise linux server eus 7.6
    redhat enterprise linux server tus 7.4
    redhat enterprise linux server tus 7.6
    redhat enterprise linux workstation 7.0
    gnome gcab 0.7.4