Vulnerability Details : CVE-2016-3993
Off-by-one error in the __imlib_MergeUpdate function in lib/updates.c in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted coordinates.
Vulnerability category: OverflowDenial of service
Products affected by CVE-2016-3993
- cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:a:enlightenment:imlib2:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2016-3993
1.56%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 85 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2016-3993
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST | |
7.5
|
HIGH | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
3.9
|
3.6
|
NIST |
CWE ids for CVE-2016-3993
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-3993
-
https://sourceforge.net/p/enlightenment/mailman/message/35055012/
Enlightenment / [Enlightenment-announce] imlib2 1.4.9
-
http://lists.opensuse.org/opensuse-updates/2016-05/msg00076.html
openSUSE-SU-2016:1330-1: moderate: Security update for imlib2
-
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819818
#819818 - imlib2: CVE-2016-3993: off-by-one OOB read in __imlib_MergeUpdate - Debian Bug report logs
-
http://www.debian.org/security/2016/dsa-3555
Debian -- Security Information -- DSA-3555-1 imlib2
-
https://git.enlightenment.org/legacy/imlib2.git/commit/?id=ce94edca1ccfbe314cb7cd9453433fad404ec7ef
legacy/imlib2.git - Image loading, rendering, saving library
Jump to