Do your applications use this vulnerable package?
Test your applications
Overview
The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.
References
- Apple Security Advisory
- Apple Security Advisory
- Apple Security Advisory
- Apple Security Advisory
- CVE Details
- Debian Security Announcement
- Debian Security Tracker
- GENTOO
- Gentoo Security Advisory
- GitHub Commit
- MISC
- MISC
- MISC
- MLIST
- Netapp Security Advisory
- OSS security Advisory
- OpenSuse Security Update
- OpenSuse Security Update
- OpenSuse Security Update
- Oracle Security Advisory
- Oracle Security Advisory
- Oracle Security Advisory
- RHSA Security Advisory
- RHSA Security Advisory
- RHSA Security Advisory
- RHSA Security Advisory
- RHSA Security Advisory
- RHSA Security Advisory
- RHSA Security Advisory
- RedHat Bugzilla Bug
- Security Focus
- Security Tracker
- Security Tracker
- UBUNTU
- UBUNTU
- Ubuntu CVE Tracker
CVSS Score
9.8
high severity
-
Attack VectorNetwork
-
Attack ComplexityLow
-
Privileges RequiredNone
-
User InteractionNone
-
ScopeUnchanged
-
ConfidentialityHigh
-
IntegrityHigh
-
AvailabilityHigh
- CVE
- CVE-2016-9843
- CWE
- CWE-189
- Snyk ID
- SNYK-DEBIAN8-ZLIB-284678
- Disclosed
- 23 May, 2017
- Published
- 23 May, 2017