CVE-2016-10253
published 2017-03-18CVE-2016-10253: An issue was discovered in Erlang/OTP 18.x. Erlang's generation of compiled regular expressions is vulnerable to a heap overflow. Regular expressions using a…
PriorityP344critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
1.48%
70.7th percentile
An issue was discovered in Erlang/OTP 18.x. Erlang's generation of compiled regular expressions is vulnerable to a heap overflow. Regular expressions using a malformed extpattern can indirectly specify an offset that is used as an array index. This ordinal permits arbitrary regions within the erts_alloc arena to be both read and written to.
Affected
70 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | erlang | < erlang 1:19.2.1+dfsg-2 (bookworm) | erlang 1:19.2.1+dfsg-2 (bookworm) |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
| erlang | erlang_otp | — | — |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
vendor_debian9.8CRITICAL
vendor_redhat9.8CRITICAL
vendor_ubuntu7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Erlang vulnerabilities
vendor_ubuntu·2018-02-14·CVSS 7.5
CVE-2014-1693 [HIGH] Erlang vulnerabilities
Title: Erlang vulnerabilities
Summary: Several security issues were fixed in Erlang.
It was discovered that the Erlang FTP module incorrectly handled certain
CRLF sequences. A remote attacker could possibly use this issue to inject
arbitrary FTP commands. This issue only affected Ubuntu 14.04 LTS.
(CVE-2014-1693)
It was discovered that Erlang incorrectly checked CBC padding bytes. A
remote attacker could possibly use this issue to perform a padding oracle
attack and decrypt traffic. This issue only affected Ubuntu 14.04 LTS.
(CVE-2015-2774)
It was discovered that Erlang incorrectly handled certain regular
expressions. A remote attacker could possibly use this issue to cause
Erlang to crash, resulting in a denial of service, or execute arbitrary
code. This issue only affected Ubuntu 16.
Red Hat
erlang: Heap-buffer overflow via regular expressions
vendor_redhat·2016-06-19·CVSS 9.8
CVE-2016-10253 [CRITICAL] CWE-122 erlang: Heap-buffer overflow via regular expressions
erlang: Heap-buffer overflow via regular expressions
An issue was discovered in Erlang/OTP 18.x. Erlang's generation of compiled regular expressions is vulnerable to a heap overflow. Regular expressions using a malformed extpattern can indirectly specify an offset that is used as an array index. This ordinal permits arbitrary regions within the erts_alloc arena to be both read and written to.
Package: erlang (Red Hat Enterprise Linux OpenStack Platform 5 (Icehouse)) - Will not fix
Package: erlang (Red Hat Enterprise Linux OpenStack Platform 6 (Juno)) - Will not fix
Package: erlang (Red Hat Enterprise Linux OpenStack Platform 7 (Kilo)) - Will not fix
Package: erlang (Red Hat OpenStack Platform 10 (Newton)) - Will not fix
Package: erlang (Red Hat OpenStack Platform 11 (Ocata)) - Will n
Debian
CVE-2016-10253: erlang - An issue was discovered in Erlang/OTP 18.x. Erlang's generation of compiled regu...
vendor_debian·2016·CVSS 9.8
CVE-2016-10253 [CRITICAL] CVE-2016-10253: erlang - An issue was discovered in Erlang/OTP 18.x. Erlang's generation of compiled regu...
An issue was discovered in Erlang/OTP 18.x. Erlang's generation of compiled regular expressions is vulnerable to a heap overflow. Regular expressions using a malformed extpattern can indirectly specify an offset that is used as an array index. This ordinal permits arbitrary regions within the erts_alloc arena to be both read and written to.
Scope: local
bookworm: resolved (fixed in 1:19.2.1+dfsg-2)
bullseye: resolved (fixed in 1:19.2.1+dfsg-2)
forky: resolved (fixed in 1:19.2.1+dfsg-2)
sid: resolved (fixed in 1:19.2.1+dfsg-2)
trixie: resolved (fixed in 1:19.2.1+dfsg-2)
GHSA
GHSA-9cqh-gh33-j3r9: An issue was discovered in Erlang/OTP 18
ghsa_unreviewed·2022-05-14
CVE-2016-10253 [CRITICAL] CWE-119 GHSA-9cqh-gh33-j3r9: An issue was discovered in Erlang/OTP 18
An issue was discovered in Erlang/OTP 18.x. Erlang's generation of compiled regular expressions is vulnerable to a heap overflow. Regular expressions using a malformed extpattern can indirectly specify an offset that is used as an array index. This ordinal permits arbitrary regions within the erts_alloc arena to be both read and written to.
OSV
erlang vulnerabilities
osv·2018-02-14·CVSS 7.5
CVE-2014-1693 [HIGH] erlang vulnerabilities
erlang vulnerabilities
It was discovered that the Erlang FTP module incorrectly handled certain
CRLF sequences. A remote attacker could possibly use this issue to inject
arbitrary FTP commands. This issue only affected Ubuntu 14.04 LTS.
(CVE-2014-1693)
It was discovered that Erlang incorrectly checked CBC padding bytes. A
remote attacker could possibly use this issue to perform a padding oracle
attack and decrypt traffic. This issue only affected Ubuntu 14.04 LTS.
(CVE-2015-2774)
It was discovered that Erlang incorrectly handled certain regular
expressions. A remote attacker could possibly use this issue to cause
Erlang to crash, resulting in a denial of service, or execute arbitrary
code. This issue only affected Ubuntu 16.04 LTS. (CVE-2016-10253)
Hanno Böck, Juraj Somorovsky and Crai
OSV
CVE-2016-10253: An issue was discovered in Erlang/OTP 18
osv·2017-03-18·CVSS 9.8
CVE-2016-10253 [CRITICAL] CVE-2016-10253: An issue was discovered in Erlang/OTP 18
An issue was discovered in Erlang/OTP 18.x. Erlang's generation of compiled regular expressions is vulnerable to a heap overflow. Regular expressions using a malformed extpattern can indirectly specify an offset that is used as an array index. This ordinal permits arbitrary regions within the erts_alloc arena to be both read and written to.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2016-10253 erlang: Heap-buffer overflow via regular expressions [epel-6]
bugzilla·2017-03-20·CVSS 9.8
CVE-2016-10253 [CRITICAL] CVE-2016-10253 erlang: Heap-buffer overflow via regular expressions [epel-6]
CVE-2016-10253 erlang: Heap-buffer overflow via regular expressions [epel-6]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
[bug automatically created by: add-tracking-bugs]
Bugzilla
CVE-2016-10253 erlang: Heap-buffer overflow via regular expressions [epel-7]
bugzilla·2017-03-20·CVSS 9.8
CVE-2016-10253 [CRITICAL] CVE-2016-10253 erlang: Heap-buffer overflow via regular expressions [epel-7]
CVE-2016-10253 erlang: Heap-buffer overflow via regular expressions [epel-7]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
[bug automatically created by: add-tracking-bugs]
Bugzilla
CVE-2016-10253 erlang: Heap-buffer overflow via regular expressions
bugzilla·2017-03-20·CVSS 9.8
CVE-2016-10253 [CRITICAL] CVE-2016-10253 erlang: Heap-buffer overflow via regular expressions
CVE-2016-10253 erlang: Heap-buffer overflow via regular expressions
An issue was discovered in Erlang/OTP Erlang's generation of compiled regular expressions is vulnerable to a heap overflow. Regular expressions using a malformed extpattern can indirectly specify an offset that is used as an array index. This ordinal permits arbitrary regions within the erts_alloc arena to be both read and written to.
References:
https://github.com/erlang/otp/pull/1108
Discussion:
Created erlang tracking bugs for this issue:
Affects: fedora-all [bug 1433986]
Affects: epel-6 [bug 1433988]
Affects: epel-7 [bug 1433989]
Bugzilla
CVE-2016-10253 erlang: Heap-buffer overflow via regular expressions [fedora-all]
bugzilla·2017-03-20·CVSS 9.8
CVE-2016-10253 [CRITICAL] CVE-2016-10253 erlang: Heap-buffer overflow via regular expressions [fedora-all]
CVE-2016-10253 erlang: Heap-buffer overflow via regular expressions [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions
2017-03-18
Published