CVE-2015-1607

Published: Nov 20, 2019Modified: Nov 21, 2024

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

kbx/keybox-search.c in GnuPG before 1.4.19, 2.0.x before 2.0.27, and 2.1.x before 2.1.2 does not properly handle bitwise left-shifts, which allows remote attackers to cause a denial of service (invalid read operation) via a crafted keyring file, related to sign extensions and "memcpy with overlapping ranges."

Affected (7)

Products: Gnupg: Gnupg · Canonical: Ubuntu Linux

1 product

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Gnupg Gnupg	Before 1.4.19
Gnupg Gnupg	From 2.0 to 2.0.27
Gnupg Gnupg	From 2.1.0 to 2.1.2

Configuration B

4 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 10.04
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 14.10

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (18)

http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git%3Ba=commit%3Bh=2183683bd633818dd031b090b5530951de76f392

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2015/02/13/14

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2015/02/14/6

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://www.securityfocus.com/bid/72610

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.ubuntu.com/usn/usn-2554-1/

Source: cve@mitre.org

Third Party Advisory

https://blog.fuzzing-project.org/5-Multiple-issues-in-GnuPG-found-through-keyring-fuzzing-TFPA-0012015.html

Source: cve@mitre.org

Third Party Advisory

https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000361.html

Source: cve@mitre.org

Mailing ListRelease NotesVendor Advisory

https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000362.html

Source: cve@mitre.org

Mailing ListRelease NotesVendor Advisory

https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000363.html

Source: cve@mitre.org

Mailing ListRelease NotesVendor Advisory

http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git%3Ba=commit%3Bh=2183683bd633818dd031b090b5530951de76f392

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2015/02/13/14

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2015/02/14/6

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://www.securityfocus.com/bid/72610

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.ubuntu.com/usn/usn-2554-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://blog.fuzzing-project.org/5-Multiple-issues-in-GnuPG-found-through-keyring-fuzzing-TFPA-0012015.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000361.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListRelease NotesVendor Advisory

https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000362.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListRelease NotesVendor Advisory

https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000363.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListRelease NotesVendor Advisory

Timeline

No history available yet.