CVE-2015-6525Integer Overflow or Wraparound in Libevent

CWE-190Integer Overflow or WraparoundCWE-122Heap-based Buffer OverflowCWE-835Infinite LoopCWE-18913 documents6 sources
Severity
7.5HIGHNVD
EPSS
1.1%
top 22.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Libevent Project LibeventDebian LibeventDebian Linux
Timeline
PublishedAug 24
Latest updateMay 17

Description

Multiple integer overflows in the evbuffer API in Libevent 2.0.x before 2.0.22 and 2.1.x before 2.1.5-beta allow context-dependent attackers to cause a denial of service or possibly have other unspecified impact via "insanely large inputs" to the (1) evbuffer_add, (2) evbuffer_prepend, (3) evbuffer_expand, (4) exbuffer_reserve_space, or (5) evbuffer_read function, which triggers a heap-based buffer overflow or an infinite loop. NOTE: this identifier was SPLIT from CVE-2014-6272 per ADT3 due to d

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

debiandebian/libevent< libevent 2.0.21-stable-2 (bookworm)
Debianlibevent_project/libevent< 2.0.21-stable-2+3
NVDlibevent_project/libevent40 versions+39

Also affects: Debian Linux 7.0, 7.1

🔴Vulnerability Details

4
GHSA
GHSA-xfhg-qx7p-6gx5: Multiple integer overflows in the evbuffer API in Libevent 22022-05-17
GHSA
GHSA-246p-m32j-f38r: Multiple integer overflows in the evbuffer API in Libevent 12022-05-17
OSV
CVE-2015-6525: Multiple integer overflows in the evbuffer API in Libevent 22015-08-24
OSV
CVE-2014-6272: Multiple integer overflows in the evbuffer API in Libevent 12015-08-24

📋Vendor Advisories

4
Red Hat
libevent: multiple integer overflows in the evbuffer APIs2015-08-24
Red Hat
libevent: potential heap overflow in buffer/bufferevent APIs2015-01-05
Debian
CVE-2015-6525: libevent - Multiple integer overflows in the evbuffer API in Libevent 2.0.x before 2.0.22 a...2015
Debian
CVE-2014-6272: libevent - Multiple integer overflows in the evbuffer API in Libevent 1.4.x before 1.4.15, ...2014

💬Community

3
Bugzilla
CVE-2015-6525 libevent: Multiple integer overflows in the evbuffer API [fedora-all]2015-08-25
Bugzilla
CVE-2015-6525 libevent: multiple integer overflows in the evbuffer APIs2015-08-25
Bugzilla
CVE-2014-6272 CVE-2015-6525 libevent: potential heap overflow in buffer/bufferevent APIs [fedora-all]2015-01-05