CVE-2018-20534
Description
There is an illegal address access at ext/testcase.c in libsolv.a in libsolv through 0.7.2 that will cause a denial of service. NOTE: third parties dispute this issue stating that the issue affects the test suite and not the underlying library. It cannot be exploited in any real-world application
Risk Information
Base Score
6.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.912
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) libsolv-debugsource-0.6.36-2.16.2.x86_64.rpm | Linux |
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) libsolv-tools-0.6.36-2.16.2.x86_64.rpm | Linux |
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) libsolv-tools-debuginfo-0.6.36-2.16.2.x86_64.rpm | Linux |
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) libzypp-16.20.0-2.39.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) libzypp-debuginfo-16.20.0-2.39.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) libzypp-debugsource-16.20.0-2.39.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) perl-solv-0.6.36-2.16.2.x86_64.rpm | Linux |
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) perl-solv-debuginfo-0.6.36-2.16.2.x86_64.rpm | Linux |
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) python-solv-0.6.36-2.16.2.x86_64.rpm | Linux |
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) python-solv-debuginfo-0.6.36-2.16.2.x86_64.rpm | Linux |
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) zypper-1.13.51-21.26.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) zypper-debuginfo-1.13.51-21.26.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) zypper-debugsource-1.13.51-21.26.4.x86_64.rpm | Linux |
| SUSE-SU-2019:1972-1(SUSE Linux Enterprise Server 12-SP5) zypper-log-1.13.51-21.26.4.noarch.rpm | Linux |
| (RHSA-2019:2290)Low: security and bug fix update libsolv-debuginfo-0.6.34-4.el7.i686.rpm | Linux |
| (RHSA-2019:2290)Low: security and bug fix update libsolv-debuginfo-0.6.34-4.el7.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update createrepo_c-debuginfo-0.11.0-3.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update createrepo_c-debuginfo-0.11.0-3.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update createrepo_c-libs-debuginfo-0.11.0-3.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update createrepo_c-libs-debuginfo-0.11.0-3.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update libcomps-debuginfo-0.1.11-2.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update libcomps-debuginfo-0.1.11-2.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update libdnf-debuginfo-0.35.1-8.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update libdnf-debuginfo-0.35.1-8.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update librepo-debuginfo-1.10.3-3.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update librepo-debuginfo-1.10.3-3.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update librhsm-debuginfo-0.0.3-3.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update librhsm-debuginfo-0.0.3-3.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update libsolv-debuginfo-0.7.4-3.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update libsolv-debuginfo-0.7.4-3.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update libsolv-demo-debuginfo-0.7.4-3.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update libsolv-demo-debuginfo-0.7.4-3.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update libsolv-tools-debuginfo-0.7.4-3.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update libsolv-tools-debuginfo-0.7.4-3.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update microdnf-debuginfo-3.0.1-3.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update perl-solv-debuginfo-0.7.4-3.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update perl-solv-debuginfo-0.7.4-3.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update python3-createrepo_c-debuginfo-0.11.0-3.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update python3-createrepo_c-debuginfo-0.11.0-3.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update python3-hawkey-debuginfo-0.35.1-8.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update python3-hawkey-debuginfo-0.35.1-8.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update python3-libcomps-debuginfo-0.1.11-2.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update python3-libcomps-debuginfo-0.1.11-2.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update python3-libdnf-debuginfo-0.35.1-8.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update python3-libdnf-debuginfo-0.35.1-8.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update python3-librepo-debuginfo-1.10.3-3.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update python3-librepo-debuginfo-1.10.3-3.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update python3-solv-debuginfo-0.7.4-3.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update python3-solv-debuginfo-0.7.4-3.el8.x86_64.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update ruby-solv-debuginfo-0.7.4-3.el8.i686.rpm | Linux |
| (RHSA-2019:3583)Moderate: security, bug fix, and enhancement update ruby-solv-debuginfo-0.7.4-3.el8.x86_64.rpm | Linux |
| Createrepo_c-devel update (ELSA-2019-3583) createrepo_c-devel-0.11.0-3.el8.x86_64.rpm | Linux |
| Createrepo_c update (ELSA-2019-3583) createrepo_c-0.11.0-3.el8.x86_64.rpm | Linux |
| Createrepo_c-devel update (ELSA-2019-3583) createrepo_c-devel-0.11.0-3.el8.i686.rpm | Linux |
| Createrepo_c-libs update (ELSA-2019-3583) createrepo_c-libs-0.11.0-3.el8.i686.rpm | Linux |
| Createrepo_c-libs update (ELSA-2019-3583) createrepo_c-libs-0.11.0-3.el8.x86_64.rpm | Linux |
| Dnf update (ELSA-2019-3583) dnf-4.2.7-6.el8.noarch.rpm | Linux |
| Dnf-automatic update (ELSA-2019-3583) dnf-automatic-4.2.7-6.el8.noarch.rpm | Linux |
| Dnf-data update (ELSA-2019-3583) dnf-data-4.2.7-6.el8.noarch.rpm | Linux |
| Dnf-plugins-core update (ELSA-2019-3583) dnf-plugins-core-4.0.8-3.el8.noarch.rpm | Linux |
| Libcomps update (ELSA-2019-3583) libcomps-0.1.11-2.el8.i686.rpm | Linux |
| Libcomps update (ELSA-2019-3583) libcomps-0.1.11-2.el8.x86_64.rpm | Linux |
| Libcomps-devel update (ELSA-2019-3583) libcomps-devel-0.1.11-2.el8.i686.rpm | Linux |
| Libcomps-devel update (ELSA-2019-3583) libcomps-devel-0.1.11-2.el8.x86_64.rpm | Linux |
| Libdnf update (ELSA-2019-3583) libdnf-0.35.1-8.0.1.el8.i686.rpm | Linux |
| Libdnf update (ELSA-2019-3583) libdnf-0.35.1-8.0.1.el8.x86_64.rpm | Linux |
| Librepo update (ELSA-2019-3583) librepo-1.10.3-3.el8.i686.rpm | Linux |
| Librepo update (ELSA-2019-3583) librepo-1.10.3-3.el8.x86_64.rpm | Linux |
| Librhsm update (ELSA-2019-3583) librhsm-0.0.3-3.el8.i686.rpm | Linux |
| Librhsm update (ELSA-2019-3583) librhsm-0.0.3-3.el8.x86_64.rpm | Linux |
| Libsolv update (ELSA-2019-3583) libsolv-0.7.4-3.el8.i686.rpm | Linux |
| Libsolv update (ELSA-2019-3583) libsolv-0.7.4-3.el8.x86_64.rpm | Linux |
| Microdnf update (ELSA-2019-3583) microdnf-3.0.1-3.el8.x86_64.rpm | Linux |
| Python3-createrepo_c update (ELSA-2019-3583) python3-createrepo_c-0.11.0-3.el8.x86_64.rpm | Linux |
| Python3-dnf update (ELSA-2019-3583) python3-dnf-4.2.7-6.el8.noarch.rpm | Linux |
| Python3-dnf-plugin-versionlock update (ELSA-2019-3583) python3-dnf-plugin-versionlock-4.0.8-3.el8.noarch.rpm | Linux |
| Python3-dnf-plugins-core update (ELSA-2019-3583) python3-dnf-plugins-core-4.0.8-3.el8.noarch.rpm | Linux |
| Python3-hawkey update (ELSA-2019-3583) python3-hawkey-0.35.1-8.0.1.el8.x86_64.rpm | Linux |
| Python3-libcomps update (ELSA-2019-3583) python3-libcomps-0.1.11-2.el8.x86_64.rpm | Linux |
| Python3-libdnf update (ELSA-2019-3583) python3-libdnf-0.35.1-8.0.1.el8.x86_64.rpm | Linux |
| Python3-librepo update (ELSA-2019-3583) python3-librepo-1.10.3-3.el8.x86_64.rpm | Linux |
| Yum update (ELSA-2019-3583) yum-4.2.7-6.el8.noarch.rpm | Linux |
| Yum-utils update (ELSA-2019-3583) yum-utils-4.0.8-3.el8.noarch.rpm | Linux |
| libsolv Security Update (ALAS-2019-1374) libsolv-0.6.34-4.amzn2.i686.rpm | Linux |
| libsolv Security Update (ALAS-2019-1374) libsolv-0.6.34-4.amzn2.x86_64.rpm | Linux |
| libsolv Security Update (ALAS-2019-1374) libsolv-demo-0.6.34-4.amzn2.x86_64.rpm | Linux |
| libsolv Security Update (ALAS-2019-1374) python2-solv-0.6.34-4.amzn2.x86_64.rpm | Linux |
| libsolv Security Update (ALAS-2019-1374) libsolv-devel-0.6.34-4.amzn2.x86_64.rpm | Linux |
| libsolv Security Update (ALAS-2019-1374) libsolv-tools-0.6.34-4.amzn2.x86_64.rpm | Linux |
| Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2018-20534) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234