Vulnerability CVE-2018-5816

Vulnerability Name:

CVE-2018-5816 (CCN-147171)

Assigned:

2018-07-17

Published:

2018-07-17

Updated:

2019-01-03

Summary:

An integer overflow error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.12 can be exploited to trigger a division by zero via specially crafted NOKIARAW file (Note: This vulnerability is caused due to an incomplete fix of CVE-2018-5804).

CVSS v3 Severity:

6.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H)
5.7 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

3.3 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L)
2.9 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

7.1 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

1.7 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

CWE-190

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2018-5816

Source: CCN
Type: BugTraq Mailing List, Thu, 19 Jul 2018 17:57:39 +0200 (CEST)
Secunia Research: LibRaw Multiple Denial of Service Vulnerabilities

Source: XF
Type: UNKNOWN
libraw-cve20185816-dos(147171)

Source: MISC
Type: Third Party Advisory
https://github.com/LibRaw/LibRaw/blob/master/Changelog.txt

Source: MISC
Type: Patch, Third Party Advisory
https://github.com/LibRaw/LibRaw/commit/1d8d1b452e5dc74033ee9f846081a0efb616cc39

Source: SECUNIA
Type: Permissions Required, Third Party Advisory
83507

Source: MISC
Type: Third Party Advisory
https://secuniaresearch.flexerasoftware.com/secunia_research/2018-14/

Source: UBUNTU
Type: Third Party Advisory
USN-3838-1

Source: CCN
Type: LibRaw Web site
raw image decoder

Vulnerable Configuration:

Configuration 1:

cpe:/a:libraw:libraw:*:*:*:*:*:*:*:* (Version < 0.18.12)

Configuration 2:

cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

Configuration CCN 1:

cpe:/a:libraw:libraw:0.18.11:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20185816	V	CVE-2018-5816	2023-06-22
oval:org.opensuse.security:def:7961	P	libraw20-0.20.2-150400.3.6.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:678	P	Security update for python-ujson (Moderate)	2022-08-04
oval:org.opensuse.security:def:4656	P	Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP5) (Important)	2022-07-21
oval:org.opensuse.security:def:3349	P	python3-3.4.6-25.29.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3338	P	python-PyYAML-3.12-26.6.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3583	P	libcroco-0_6-3-0.6.11-12.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3361	P	sane-backends-1.0.24-3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94968	P	libraw20-0.20.2-150400.1.36 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:95213	P	libraw-devel-0.20.2-150400.1.36 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:1804	P	Security update for MozillaThunderbird (Important)	2022-05-17
oval:org.opensuse.security:def:1166	P	Security update for openldap2 (Important)	2022-05-16
oval:org.opensuse.security:def:4684	P	Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP5) (Critical)	2022-02-16
oval:org.opensuse.security:def:4664	P	Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP5) (Important)	2022-02-01
oval:org.opensuse.security:def:70320	P	Security update for poppler (Important)	2021-12-01
oval:org.opensuse.security:def:4729	P	Security update for the Linux Kernel (Important)	2021-11-17
oval:org.opensuse.security:def:64794	P	Security update for binutils (Moderate)	2021-11-04
oval:org.opensuse.security:def:71381	P	python3-pycrypto-2.6.1-1.28 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:68041	P	Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP1) (Important)	2021-08-17
oval:org.opensuse.security:def:47823	P	logwatch-7.4.3-15.65 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47688	P	libXvnc1-1.6.0-18.23.72 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48240	P	memcached-1.4.39-4.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47687	P	libXvMC1-1.0.8-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48016	P	gdm-3.10.0.1-54.6.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47702	P	libecpg6-10.5-1.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48148	P	libmms0-0.6.2-15.8 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:101051	P	ppc64-diag-2.7.6-3.3.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:66872	P	Security update for libvirt (Moderate)	2021-07-27
oval:org.opensuse.security:def:51621	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)	2021-07-27
oval:org.opensuse.security:def:73655	P	Security update for salt (Critical)	2021-06-21
oval:org.opensuse.security:def:64707	P	Security update for libxml2 (Moderate)	2021-06-09
oval:org.opensuse.security:def:1761	P	cups-ddk-2.2.7-1.24 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48813	P	pulseaudio-module-bluetooth-5.0-2.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48602	P	ppp-2.4.7-1.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48844	P	java-1_7_0-openjdk-plugin-1.6.2-2.8.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48686	P	libmikmod3-3.2.0-4.59 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48915	P	kernel-default-extra-4.12.14-94.41.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48388	P	cpio-2.11-29.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48748	P	libuuid-devel-2.25-30.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:70215	P	Security update for java-11-openjdk (Important)	2021-05-11
oval:org.opensuse.security:def:5634	P	Security update for clamav-database (Important)	2021-04-06
oval:org.opensuse.security:def:51732	P	Security update for screen (Important)	2021-02-17
oval:org.opensuse.security:def:66964	P	Security update for the Linux Kernel (Important)	2021-02-09
oval:org.opensuse.security:def:49138	P	Security update for slurm_18_08 (Important)	2020-12-17
oval:org.opensuse.security:def:5603	P	Security update for the Linux Kernel (Important)	2020-12-08
oval:org.opensuse.security:def:68141	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:107717	P	libraw-devel-0.18.9-3.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63635	P	libraw-devel-0.18.9-3.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2503	P	libraw-devel-0.18.9-3.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71494	P	glibc-32bit-2.26-8.21 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:90121	P	libraw-devel-0.18.9-3.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2546	P	libraw-devel-0.18.9-3.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117232	P	libraw-devel-0.18.9-3.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:94338	P	libraw-devel-0.18.9-3.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103776	P	libraw-devel-0.18.9-3.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63592	P	libraw-devel-0.18.9-3.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2701	P	Security update for MozillaFirefox (Important)	2020-12-02
oval:org.opensuse.security:def:4789	P	Security update for skopeo (Important)	2020-12-02
oval:org.opensuse.security:def:2711	P	Security update for openexr (Moderate)	2020-12-02
oval:org.opensuse.security:def:2624	P	Security update for cni, cni-plugins, conmon, fuse-overlayfs, podman (Moderate)	2020-12-02
oval:org.opensuse.security:def:2671	P	Security update for cups (Important)	2020-12-02
oval:org.opensuse.security:def:4906	P	Security update for salt (Critical)	2020-12-02
oval:org.opensuse.security:def:4965	P	Security update for tomcat (Moderate)	2020-12-02
oval:org.opensuse.security:def:2656	P	Security update for soundtouch (Moderate)	2020-12-02
oval:org.opensuse.security:def:2709	P	Security update for openexr (Moderate)	2020-12-02
oval:org.opensuse.security:def:4808	P	Security update for dovecot23 (Moderate)	2020-12-02
oval:org.opensuse.security:def:2630	P	Security update for podman (Moderate)	2020-12-02
oval:org.opensuse.security:def:2695	P	Security update for gnome-shell (Moderate)	2020-12-02
oval:org.opensuse.security:def:4774	P	Security update for libvirt (Moderate)	2020-12-02
oval:org.opensuse.security:def:4938	P	Security update for squid (Critical)	2020-12-02
oval:org.opensuse.security:def:2662	P	Security update for audiofile (Moderate)	2020-12-02
oval:org.opensuse.security:def:4945	P	Security update for rmt-server (Important)	2020-12-02
oval:org.opensuse.security:def:4881	P	Security update for squid (Important)	2020-12-02
oval:org.opensuse.security:def:2620	P	Security update for podman (Moderate)	2020-12-02
oval:org.opensuse.security:def:4952	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:2642	P	Security update for wireshark (Moderate)	2020-12-02
oval:org.opensuse.security:def:49156	P	libXxf86dga-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53734	P	Security update for nodejs10 (Important)	2020-12-01
oval:org.opensuse.security:def:50946	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:49889	P	libncurses5-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51344	P	Security update for tigervnc (Critical)	2020-12-01
oval:org.opensuse.security:def:51794	P	Security update for libraw (Moderate)	2020-12-01
oval:org.opensuse.security:def:52178	P	Security update for postgresql12 (Important)	2020-12-01
oval:org.opensuse.security:def:50148	P	gnome-photos on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52458	P	Security update for dpdk (Critical)	2020-12-01
oval:org.opensuse.security:def:49634	P	gstreamer-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50287	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:50969	P	Security update for perl-DBI (Important)	2020-12-01
oval:org.opensuse.security:def:51787	P	Security update for build (Moderate)	2020-12-01
oval:org.opensuse.security:def:50352	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:53808	P	Security update for libraw (Moderate)	2020-12-01
oval:org.opensuse.security:def:49283	P	openssh on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50127	P	apache-commons-fileupload on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50191	P	imobiledevice-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51515	P	Security update for go1.15 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50383	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:52269	P	Security update for java-1_8_0-openjdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:50202	P	libraw-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49732	P	crash on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52341	P	Security update for libxml2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:51107	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:52070	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:49137	P	libQt5Concurrent-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73537	P	libnss_slurm2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52377	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:49488	P	rtkit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50245	P	libraw-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50217	P	PackageKit-gstreamer-plugin on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50947	P	Security update for perl-XML-Twig (Moderate)	2020-12-01
oval:org.opensuse.security:def:50456	P	Security update for curl (Important)	2020-12-01
oval:com.ubuntu.xenial:def:201858160000000	V	CVE-2018-5816 on Ubuntu 16.04 LTS (xenial) - medium.	2018-12-07
oval:com.ubuntu.bionic:def:20185816000	V	CVE-2018-5816 on Ubuntu 18.04 LTS (bionic) - medium.	2018-12-07
oval:com.ubuntu.disco:def:201858160000000	V	CVE-2018-5816 on Ubuntu 19.04 (disco) - medium.	2018-12-07
oval:com.ubuntu.cosmic:def:20185816000	V	CVE-2018-5816 on Ubuntu 18.10 (cosmic) - medium.	2018-12-07
oval:com.ubuntu.cosmic:def:201858160000000	V	CVE-2018-5816 on Ubuntu 18.10 (cosmic) - medium.	2018-12-07
oval:com.ubuntu.trusty:def:20185816000	V	CVE-2018-5816 on Ubuntu 14.04 LTS (trusty) - medium.	2018-12-07
oval:com.ubuntu.bionic:def:201858160000000	V	CVE-2018-5816 on Ubuntu 18.04 LTS (bionic) - medium.	2018-12-07
oval:com.ubuntu.xenial:def:20185816000	V	CVE-2018-5816 on Ubuntu 16.04 LTS (xenial) - medium.	2018-12-07

BACK