Vulnerability CVE-2019-17543

Vulnerability Name:

CVE-2019-17543 (CCN-168965)

Assigned:

2019-07-17

Published:

2019-07-17

Updated:

2021-07-23

Summary:

LZ4 before 1.9.2 has a heap-based buffer overflow in LZ4_write32 (related to LZ4_compress_destSize), affecting applications that call LZ4_compress_fast with a large input. (This issue can also lead to data corruption.)
Note: the vendor states "only a few specific / uncommon usages of the API are at risk."

CVSS v3 Severity:

8.1 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
7.1 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

3.3 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L)
2.9 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

1.7 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

CWE-787

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2019-17543

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2019:2398

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2019:2399

Source: CCN
Type: Google Security Research Issue 15941
lz4/compress_fuzzer: Heap-buffer-overflow in LZ4_write32

Source: MISC
Type: Third Party Advisory
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15941

Source: XF
Type: UNKNOWN
lz4-cve201917543-dos(168965)

Source: CCN
Type: LZ4 GIT Repository
LZ4

Source: MISC
Type: Third Party Advisory
https://github.com/lz4/lz4/compare/v1.9.1...v1.9.2

Source: MISC
Type: Third Party Advisory
https://github.com/lz4/lz4/issues/801

Source: MISC
Type: Patch, Third Party Advisory
https://github.com/lz4/lz4/pull/756

Source: MISC
Type: Patch, Third Party Advisory
https://github.com/lz4/lz4/pull/760

Source: MLIST
Type: UNKNOWN
[arrow-issues] 20191025 [jira] [Commented] (ARROW-6984) [C++] Update LZ4 to 1.9.2 for CVE-2019-17543

Source: MLIST
Type: UNKNOWN
[arrow-issues] 20191106 [jira] [Resolved] (ARROW-6984) [C++] Update LZ4 to 1.9.2 for CVE-2019-17543

Source: MLIST
Type: UNKNOWN
[arrow-issues] 20191024 [jira] [Updated] (ARROW-6984) [C++] Update LZ4 to 1.9.2 for CVE-2019-17543

Source: MLIST
Type: UNKNOWN
[arrow-issues] 20191024 [jira] [Created] (ARROW-6984) Update LZ4 to 1.9.2 for CVE-2019-17543

Source: MLIST
Type: UNKNOWN
[arrow-issues] 20191024 [jira] [Assigned] (ARROW-6984) [C++] Update LZ4 to 1.9.2 for CVE-2019-17543

Source: MLIST
Type: UNKNOWN
[arrow-dev] 20191024 [jira] [Created] (ARROW-6984) Update LZ4 to 1.9.2 for CVE-2019-17543

Source: MISC
Type: UNKNOWN
https://lists.apache.org/thread.html/r0fb226357e7988a241b06b93bab065bcea2eb38658b382e485960e26@%3Cissues.kudu.apache.org%3E

Source: MLIST
Type: UNKNOWN
[kudu-issues] 20200709 [jira] [Resolved] (KUDU-3156) Whether the CVE-2019-17543 vulnerability of lz affects kudu

Source: MLIST
Type: UNKNOWN
[kudu-issues] 20200621 [jira] [Updated] (KUDU-3156) Whether the CVE-2019-17543 vulnerability of lz affects kudu

Source: CCN
Type: IBM Security Bulletin 6833582 (Cloud Pak for Security)
IBM Cloud Pak for Security is vulnerable to using components with known vulnerabilities

Source: N/A
Type: UNKNOWN
N/A

Source: CCN
Type: Oracle CPUJul2021
Oracle Critical Patch Update Advisory - July 2021

Source: CCN
Type: Oracle CPUOct2020
Oracle Critical Patch Update Advisory - October 2020

Source: MISC
Type: UNKNOWN
https://www.oracle.com/security-alerts/cpuoct2020.html

Vulnerable Configuration:

Configuration 1:

cpe:/a:lz4_project:lz4:*:*:*:*:*:*:*:* (Version < 1.9.2)

Configuration CCN 1:

cpe:/a:lz4_project:lz4:1.9.1:*:*:*:*:*:*:*

AND

cpe:/a:oracle:database_server:19c:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_security:1.10.0.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201917543	V	CVE-2019-17543	2023-06-22
oval:org.opensuse.security:def:7611	P	liblz4-1-1.9.3-150400.1.7 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:748	P	Security update for samba (Important)	2022-09-12
oval:org.opensuse.security:def:3026	P	bluez-5.13-5.12.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94656	P	liblz4-1-1.9.3-150400.1.7 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:153	P	liblz4-1-1.9.2-1.40 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:93804	P	(Important)	2022-05-03
oval:org.opensuse.security:def:1082	P	Security update for wireshark (Moderate)	2022-02-14
oval:org.opensuse.security:def:1411	P	Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP3) (Important)	2022-02-01
oval:org.opensuse.security:def:112678	P	liblz4-1-1.9.3-1.5 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:64812	P	Security update for the Linux Kernel (Important)	2021-12-06
oval:org.opensuse.security:def:69735	P	Security update for grilo (Important)	2021-10-06
oval:org.opensuse.security:def:106158	P	liblz4-1-1.9.3-1.5 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:74305	P	Security update for libass (Important)	2021-08-20
oval:org.opensuse.security:def:68246	P	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP2) (Important)	2021-08-17
oval:org.opensuse.security:def:48143	P	liblouis-data-2.6.4-6.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47928	P	xorg-x11-server-1.19.6-2.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48129	P	libjansson4-2.12-3.5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48128	P	libipa_hbac0-1.16.1-4.17.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48257	P	pam_ssh-2.0-1.39 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48064	P	libHX28-3.18-1.18 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47943	P	accountsservice-0.6.42-16.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48264	P	perl-Config-IniFiles-2.82-3.12 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47929	P	xscreensaver-5.22-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:2249	P	libecpg6-13.2-5.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63316	P	apache2-mod_auth_openidc-2.3.8-3.7.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:71912	P	liblz4-1-1.9.2-1.40 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62171	P	liblz4-1-1.9.2-1.40 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100929	P	liblz4-1-1.9.2-1.40 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1611	P	Security update for qemu (Important)	2021-06-10
oval:org.opensuse.security:def:48481	P	libapr1-1.5.1-2.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48829	P	drm-kmp-default-4.9.33_k4.4.73_5-2.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48389	P	cpp48-4.8.5-30.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48681	P	libfbembed2_5-2.5.2.26539-13.42 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48589	P	pam-modules-12.1-23.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48927	P	libid3tag0-0.15.1b-184.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:63542	P	imobiledevice-tools-1.2.0+git20170122.45fda81-1.44 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48457	P	libHX28-3.18-1.18 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48843	P	imobiledevice-tools-1.2.0-7.31 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48629	P	supportutils-3.0-85.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:26049	P	Security update for lz4 (Important)	2021-05-14
oval:org.opensuse.security:def:5036	P	Security update for lz4 (Important)	2021-05-14
oval:org.opensuse.security:def:69840	P	Security update for sca-patterns-sle11 (Important)	2021-05-04
oval:org.opensuse.security:def:49189	P	Security update for openldap2 (Important)	2021-03-03
oval:org.opensuse.security:def:49127	P	Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (Important)	2021-02-12
oval:org.opensuse.security:def:68146	P	Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP2) (Important)	2020-12-16
oval:org.opensuse.security:def:63178	P	rarpd-s20161105-6.10 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49043	P	libwpd-0_10-10-0.10.2-2.7.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:116741	P	liblz4-1-1.8.0-3.5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62976	P	perl-Net-Libproxy-0.4.15-2.42 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62496	P	vino-3.22.0-1.62 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62697	P	libsmi-devel-0.4.8-1.29 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61837	P	liblz4-1-1.8.0-3.5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49054	P	rhythmbox-3.4-6.14 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:100517	P	liblz4-1-1.8.0-3.5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62520	P	gdk-pixbuf-query-loaders-32bit-2.36.11-3.19 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:48989	P	gimp-2.8.18-9.3.26 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71599	P	libpainter0-0.9.13-2.8 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62497	P	vorbis-tools-1.4.0-1.53 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2049	P	389-ds-1.4.0.3-2.39 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71578	P	liblz4-1-1.8.0-3.5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71486	P	gc-devel-7.6.4-1.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107183	P	liblz4-1-1.8.0-3.5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49156	P	libXxf86dga-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64211	P	apr-util-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50486	P	Security update for lz4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:73057	P	cpio on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49085	P	ecryptfs-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64109	P	Security update for bluez (Important)	2020-12-01
oval:org.opensuse.security:def:74431	P	Security update for lz4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49135	P	libHX-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49356	P	xalan-j2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64003	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:50686	P	Security update for lz4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:66392	P	gc-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49285	P	opie-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:63869	P	Security update for audit (Moderate)	2020-12-01
oval:org.opensuse.security:def:50432	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:49254	P	libvmtools-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64899	P	Security update for lz4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:64365	P	libpcre1-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73175	P	liblz4-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50632	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:64253	P	freetype2-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66484	P	liblz4-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:110055	P	Security update for lz4 (Moderate)	2019-10-28
oval:org.opensuse.security:def:103880	P	Security update for lz4 (Moderate)	2019-10-23
oval:org.opensuse.security:def:90225	P	Security update for lz4 (Moderate)	2019-10-23
oval:com.ubuntu.disco:def:2019175430000000	V	CVE-2019-17543 on Ubuntu 19.04 (disco) - low.	2019-10-14
oval:com.ubuntu.bionic:def:2019175430000000	V	CVE-2019-17543 on Ubuntu 18.04 LTS (bionic) - low.	2019-10-14
oval:com.ubuntu.xenial:def:2019175430000000	V	CVE-2019-17543 on Ubuntu 16.04 LTS (xenial) - low.	2019-10-14

BACK