CVE-2016-0799 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Openssl

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787 — Out-of-bounds Write CWE-200 — Sensitive Information Exposure CWE-310 CWE-39932 documents15 sources

Severity

9.8CRITICALNVD

OSV5.1

EPSS

43.5%

top 2.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openssl Debian Openssl Paloalto Cortex XDR +1 more

Timeline

PublishedMar 3

Latest updateNov 7

Description

The fmtstr function in crypto/bio/b_print.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g improperly calculates string lengths, which allows remote attackers to cause a denial of service (overflow and out-of-bounds read) or possibly have unspecified other impact via a long string, as demonstrated by a large amount of ASN.1 data, a different vulnerability than CVE-2016-2842.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages6 packages

▶debiandebian/openssl< openssl 1.0.2g-1 (bookworm)

▶Debianopenssl/openssl< 1.0.2g-1+3

▶Ubuntuopenssl/openssl< 1.0.1f-1ubuntu2.18

▶NVDopenssl/openssl26 versions+25

▶Palo Altopaloalto/pan-os

🔴Vulnerability Details

GHSA

GHSA-jj34-65xr-hwrp: The doapr_outch function in crypto/bio/b_print↗2022-05-14

▶

GHSA

GHSA-x493-jjcm-ffg2: The fmtstr function in crypto/bio/b_print↗2022-05-14

▶

OSV

CVE-2016-0799: The fmtstr function in crypto/bio/b_print↗2016-03-03

▶

OSV

CVE-2016-2842: The doapr_outch function in crypto/bio/b_print↗2016-03-03

▶

OSV

openssl vulnerabilities↗2016-03-01

▶

📋Vendor Advisories

Palo Alto

PAN-SA-2024-0014 Informational Bulletin: Impact of OSS CVEs in Cortex XDR Agent↗2024-11-07

▶

CISA ICS

Siemens SCALANCE X-200RNA Switch Devices↗2022-12-19

▶

CISA ICS

Advantech Spectre RT Industrial Routers↗2021-02-23

▶

Palo Alto

PAN-SA-2016-0020 OpenSSL Vulnerabilities↗2016-08-15

▶

BSD

FreeBSD-SA-16:12.openssl: Multiple OpenSSL vulnerabilities↗2016-03-10

▶

🕵️Threat Intelligence

Tenable

[R12] OpenSSL '20160301' Advisory Affects Tenable Products↗2016-03-02

▶

📄Research Papers

arXiv

A Novel Model for Vulnerability Analysis through Enhanced Directed Graphs and Quantitative Metrics↗2021-12-13

▶

arXiv

Fixing Vulnerabilities Potentially Hinders Maintainability↗2021-09-12

▶

💬Community

HackerOne

CVE-2016-0799 memory issues in BIO_*printf functions↗2016-03-27

▶

Bugzilla

CVE-2016-2842 openssl: doapr_outch function does not verify that certain memory allocation succeeds↗2016-03-04

▶

Bugzilla

CVE-2016-2842 mingw-openssl: openssl: doapr_outch function does not verify that certain memory allocation succeeds [fedora-all]↗2016-03-04

▶

Bugzilla

CVE-2016-2842 openssl: doapr_outch function does not verify that certain memory allocation succeeds [fedora-all]↗2016-03-04

▶

Bugzilla

CVE-2016-2842 openssl101e: openssl: doapr_outch function does not verify that certain memory allocation succeeds [epel-5]↗2016-03-04

▶