CVE-2011-3170

CWE-119 — Buffer Overflow9 documents8 sources

Severity

5.1MEDIUM

EPSS

9.1%

top 7.32%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Cups

Timeline

PublishedAug 19

Latest updateMay 17

Description

The gif_read_lzw function in filter/image-gif.c in CUPS 1.4.8 and earlier does not properly handle the first code word in an LZW stream, which allows remote attackers to trigger a heap-based buffer overflow, and possibly execute arbitrary code, via a crafted stream, a different vulnerability than CVE-2011-2896.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages2 packages

▶Debiancups< 1.5.0-8+3

▶NVDapple/cups1.4.8+67

Patches

Patch: cups.org ↗Patch: bugzilla.redhat.com ↗Patch: cups.org ↗

🔴Vulnerability Details

GHSA

GHSA-gq38-xj7p-vcm8: The gif_read_lzw function in filter/image-gif↗2022-05-17

▶

OSV

CVE-2011-3170: The gif_read_lzw function in filter/image-gif↗2011-08-19

▶

CVEList

CVE-2011-3170: The gif_read_lzw function in filter/image-gif↗2011-08-19

▶

📋Vendor Advisories

Ubuntu

CUPS vulnerabilities↗2011-09-14

▶

Red Hat

cups: gif_read_lzw() does not properly handle first code word in an LZW stream, which may lead to arbitrary code execution↗2011-08-04

▶

Debian

CVE-2011-3170: cups - The gif_read_lzw function in filter/image-gif.c in CUPS 1.4.8 and earlier does n...↗2011

▶

💬Community

Bugzilla

CVE-2011-3170 cups: gif_read_lzw() foes not properly handle first code word in an LZW stream, which may lead to arbitrary code execution [fedora-all]↗2011-08-19

▶

Bugzilla

CVE-2011-3170 cups: gif_read_lzw() does not properly handle first code word in an LZW stream, which may lead to arbitrary code execution↗2011-08-19

▶