965618 – (CVE-2016-2196) VUL-0: CVE-2016-2196: botan: various flaws fixed in 1.11.27 and 1.10.11

Bug 965618 (CVE-2016-2196) - VUL-0: CVE-2016-2196: botan: various flaws fixed in 1.11.27 and 1.10.11

Summary: VUL-0: CVE-2016-2196: botan: various flaws fixed in 1.11.27 and 1.10.11

Status:	RESOLVED UPSTREAM

Alias:	CVE-2016-2196

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Assignee:	Philipp Thomas
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/161642/
Whiteboard:	CVSSv2:RedHat:CVE-2016-2194:6.8:(AV:...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2016-02-08 13:24 UTC by Sebastian Krahmer
Modified:	2019-05-01 17:02 UTC (History)
CC List:	3 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Sebastian Krahmer 2016-02-08 13:24:19 UTC

Quoting from RH BZ:

"2016-02-01 (CVE-2016-2196): Overwrite in P-521 reduction

The P-521 reduction function would overwrite zero to one word following the allocated block. This could potentially result in remote code execution or a crash. Found with AFL

Introduced in 1.11.10, fixed in 1.11.27"


References:
https://bugzilla.redhat.com/show_bug.cgi?id=1305439
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2196

Comment 1 Marcus Meissner 2016-05-25 15:08:10 UTC

even factory just has 1.10.2, sle is older.