CVE-2014-9862

Published: Jul 22, 2016Modified: May 6, 2026

7.8

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Integer signedness error in bspatch.c in bspatch in bsdiff, as used in Apple OS X before 10.11.6 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow) via a crafted patch file.

Affected (1)

Products: Apple: Mac Os X

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	Up to 10.11.5

Related CWEs

Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

References (28)

http://lists.apple.com/archives/security-announce/2016/Jul/msg00000.html

Source: cve@mitre.org

Mailing ListVendor Advisory

http://lists.opensuse.org/opensuse-updates/2016-08/msg00026.html

Source: cve@mitre.org

http://seclists.org/fulldisclosure/2020/Jul/8

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2020/07/09/2

Source: cve@mitre.org

http://www.securityfocus.com/bid/91824

Source: cve@mitre.org

http://www.securitytracker.com/id/1036438

Source: cve@mitre.org

https://android.googlesource.com/platform/external/bsdiff/+/4d054795b673855e3a7556c6f2f7ab99ca509998

Source: cve@mitre.org

Issue Tracking

https://bugs.chromium.org/p/chromium/issues/detail?id=372525

Source: cve@mitre.org

Issue Tracking

https://chromium.googlesource.com/chromiumos/third_party/bsdiff/+/d0307d1711bd74e51b783a49f9160775aa22e659

Source: cve@mitre.org

Issue Tracking

https://lists.debian.org/debian-lts-announce/2019/11/msg00028.html

Source: cve@mitre.org

https://security.FreeBSD.org/advisories/FreeBSD-SA-16:25.bspatch.asc

Source: cve@mitre.org

https://security.gentoo.org/glsa/202003-44

Source: cve@mitre.org

https://support.apple.com/HT206903

Source: cve@mitre.org

Vendor Advisory

https://usn.ubuntu.com/4500-1/

Source: cve@mitre.org

http://lists.apple.com/archives/security-announce/2016/Jul/msg00000.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListVendor Advisory

http://lists.opensuse.org/opensuse-updates/2016-08/msg00026.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://seclists.org/fulldisclosure/2020/Jul/8

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2020/07/09/2

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/91824

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id/1036438

Source: af854a3a-2127-422b-91ae-364da2661108

https://android.googlesource.com/platform/external/bsdiff/+/4d054795b673855e3a7556c6f2f7ab99ca509998

Source: af854a3a-2127-422b-91ae-364da2661108

Issue Tracking

https://bugs.chromium.org/p/chromium/issues/detail?id=372525

Source: af854a3a-2127-422b-91ae-364da2661108

Issue Tracking

https://chromium.googlesource.com/chromiumos/third_party/bsdiff/+/d0307d1711bd74e51b783a49f9160775aa22e659

Source: af854a3a-2127-422b-91ae-364da2661108

Issue Tracking

https://lists.debian.org/debian-lts-announce/2019/11/msg00028.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.FreeBSD.org/advisories/FreeBSD-SA-16:25.bspatch.asc

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.gentoo.org/glsa/202003-44

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.apple.com/HT206903

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://usn.ubuntu.com/4500-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.