CVE-2016-7167

Published: Oct 7, 2016Modified: May 6, 2026

9.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Multiple integer overflows in the (1) curl_escape, (2) curl_easy_escape, (3) curl_unescape, and (4) curl_easy_unescape functions in libcurl before 7.50.3 allow attackers to have unspecified impact via a string of length 0xffffffff, which triggers a heap-based buffer overflow.

Affected (4)

Products: Fedoraproject: Fedora · Haxx: Libcurl

1 product

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 23
Fedoraproject Fedora	Version 24
Fedoraproject Fedora	Version 25

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Haxx Libcurl	Up to 7.50.2

Related CWEs

Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

References (26)

http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/92975

Source: cve@mitre.org

Broken Link

http://www.securitytracker.com/id/1036813

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.538632

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:2016

Source: cve@mitre.org

https://access.redhat.com/errata/RHSA-2018:2486

Source: cve@mitre.org

https://access.redhat.com/errata/RHSA-2018:3558

Source: cve@mitre.org

https://curl.haxx.se/docs/adv_20160914.html

Source: cve@mitre.org

Vendor Advisory

https://lists.debian.org/debian-lts-announce/2018/11/msg00005.html

Source: cve@mitre.org

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3IU2FRXQNU6UJIQT4NGLWWTP2GJQXO7/

Source: cve@mitre.org

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LTH54DFOS4TSYPG5XKJDGAG4XPAR4T7M/

Source: cve@mitre.org

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZMRWVISG7VUCYRMF23A2UHMYD72VQWAK/

Source: cve@mitre.org

https://security.gentoo.org/glsa/201701-47

Source: cve@mitre.org

http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/92975

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://www.securitytracker.com/id/1036813

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.538632

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:2016

Source: af854a3a-2127-422b-91ae-364da2661108

https://access.redhat.com/errata/RHSA-2018:2486

Source: af854a3a-2127-422b-91ae-364da2661108

https://access.redhat.com/errata/RHSA-2018:3558

Source: af854a3a-2127-422b-91ae-364da2661108

https://curl.haxx.se/docs/adv_20160914.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://lists.debian.org/debian-lts-announce/2018/11/msg00005.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3IU2FRXQNU6UJIQT4NGLWWTP2GJQXO7/

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LTH54DFOS4TSYPG5XKJDGAG4XPAR4T7M/

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZMRWVISG7VUCYRMF23A2UHMYD72VQWAK/

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.gentoo.org/glsa/201701-47

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.