CVE-2016-2195 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Project Botan

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer6 documents4 sources

Severity

9.8CRITICALNVD

EPSS

10.6%

top 6.70%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Botan Project Botan Debian Linux

Timeline

PublishedMay 13

Latest updateMay 17

Description

Integer overflow in the PointGFp constructor in Botan before 1.10.11 and 1.11.x before 1.11.27 allows remote attackers to overwrite memory and possibly execute arbitrary code via a crafted ECC point, which triggers a heap-based buffer overflow.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

▶NVDbotan_project/botan1.10.10+27

Also affects: Debian Linux 8.0

🔴Vulnerability Details

GHSA

GHSA-7gxp-rgh3-mj5p: Integer overflow in the PointGFp constructor in Botan before 1↗2022-05-17

▶

OSV

CVE-2016-2195: Integer overflow in the PointGFp constructor in Botan before 1↗2016-05-13

▶

💬Community

Bugzilla

CVE-2016-2194 CVE-2016-2195 CVE-2016-2196 botan: various flaws fixed in 1.11.27 and 1.10.11 [fedora-all]↗2016-02-08

▶

Bugzilla

CVE-2016-2196 CVE-2016-2195 CVE-2016-2194 botan: various flaws fixed in 1.11.27 and 1.10.11↗2016-02-08

▶

Bugzilla

CVE-2016-2194 CVE-2016-2195 CVE-2016-2196 botan: various flaws fixed in 1.11.27 and 1.10.11 [epel-all]↗2016-02-08

▶