CVE-2021-3504Out-of-bounds Read in Redhat Hivex

CWE-125Out-of-bounds Read9 documents8 sources
Severity
5.4MEDIUMNVD
EPSS
0.1%
top 64.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Redhat HivexDebian LinuxFedoraproject Fedora+1 more
Timeline
PublishedMay 11
Latest updateMay 24

Description

A flaw was found in the hivex library in versions before 1.3.20. It is caused due to a lack of bounds check within the hivex_open function. An attacker could input a specially crafted Windows Registry (hive) file which would cause hivex to read memory beyond its normal bounds or cause the program to crash. The highest threat from this vulnerability is to system availability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:LExploitability: 2.8 | Impact: 2.5

Affected Packages3 packages

NVDredhat/hivex< 1.3.20
Debianredhat/hivex< 1.3.20-1+3
CVEListV5redhat/hivexhivex-1.3.20

Also affects: Debian Linux 9.0, Fedora 34, Enterprise Linux 6.0, 7.0, 8.0

Patches

Patch: bugzilla.redhat.comPatch: bugzilla.redhat.com

🔴Vulnerability Details

3
GHSA
GHSA-5vp3-c6x6-5464: A flaw was found in the hivex library in versions before 12022-05-24
OSV
CVE-2021-3504: A flaw was found in the hivex library in versions before 12021-05-11
CVEList
CVE-2021-3504: A flaw was found in the hivex library in versions before 12021-05-11

📋Vendor Advisories

5
Ubuntu
hivex vulnerability2021-11-16
Ubuntu
hivex vulnerability2021-11-16
Microsoft
A flaw was found in the hivex library in versions before 1.3.20. It is caused due to a lack of bounds check within the hivex_open function. An attacker could input a specially crafted Windows Registry2021-05-11
Red Hat
hivex: Buffer overflow when provided invalid node key length2021-05-03
Debian
CVE-2021-3504: hivex - A flaw was found in the hivex library in versions before 1.3.20. It is caused du...2021
CVE-2021-3504 — Out-of-bounds Read in Redhat Hivex | cvebase