CVE-2017-1000376

Published: Jun 19, 2017Modified: May 13, 2026

7.0

Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.0 / Impact: 5.9

Source: NVD

Description

libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Please note that libffi is used by a number of other libraries. It was previously stated that this affects libffi version 3.2.1 but this appears to be incorrect. libffi prior to version 3.1 on 32 bit x86 systems was vulnerable, and upstream is believed to have fixed this issue in version 3.1.

Affected (9)

Products: Redhat: Enterprise Linux, Enterprise Virtualization Server, Openshift · Debian: Debian Linux · Libffi Project: Libffi · +1 more

Show all products

Redhat: Enterprise Linux, Enterprise Virtualization Server, Openshift · Debian: Debian Linux · Libffi Project: Libffi · Oracle: Peopletools

3 products

Enterprise Linux

Enterprise Virtualization Server

1 product

1 product

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 6.0
Redhat Enterprise Linux	Version 7.0
Redhat Enterprise Virtualization Server	All versions
Redhat Openshift	Version 2.0

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 8.0
Debian Debian Linux	Version 9.0

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Libffi Project Libffi	Before 3.2

Configuration D

2 vulnerable

Vulnerable Software	Affected Versions
Oracle Peopletools	Version 8.56
Oracle Peopletools	Version 8.57

Related CWEs

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (8)

http://www.debian.org/security/2017/dsa-3889

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/security/cve/CVE-2017-1000376

Source: cve@mitre.org

Third Party Advisory

https://www.oracle.com/security-alerts/cpujan2020.html

Source: cve@mitre.org

Third Party Advisory

https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://www.debian.org/security/2017/dsa-3889

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/security/cve/CVE-2017-1000376

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.oracle.com/security-alerts/cpujan2020.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

Timeline

No history available yet.