First Last Prev Next    This bug is not in your last search results.
Bug 986642 - (CVE-2016-5825) VUL-0: CVE-2016-5825: libical: heap overread
(CVE-2016-5825)
VUL-0: CVE-2016-5825: libical: heap overread
Status: RESOLVED FIXED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Normal
: ---
Assigned To: Michael Gorse
Security Team bot
https://smash.suse.de/issue/170520/
CVSSv2:SUSE:CVE-2016-5825:5.8:(AV:N/A...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2016-06-27 12:38 UTC by Marcus Meissner
Modified: 2019-08-31 08:15 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2016-06-27 12:38:03 UTC 
CVE-2016-5825

    The following three bugs are distinct heap over-reads in libical
    (tested against libical 0.47 and 1.0) which have had little to no
    reception by Mozilla.


    https://bugzilla.mozilla.org/show_bug.cgi?id=1280832


Use CVE-2016-5825.

(not more information included)


References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5825
http://seclists.org/oss-sec/2016/q2/604
Comment 1 Swamp Workflow Management 2016-06-27 22:02:02 UTC 
bugbot adjusting priority
Comment 3 Swamp Workflow Management 2018-01-17 14:08:17 UTC 
SUSE-SU-2018:0119-1: An update that solves 6 vulnerabilities and has one errata is now available.

Category: security (moderate)
Bug References: 1015964,1044995,986631,986632,986639,986642,986658
CVE References: CVE-2016-5823,CVE-2016-5824,CVE-2016-5825,CVE-2016-5826,CVE-2016-5827,CVE-2016-9584
Sources used:
SUSE Linux Enterprise Software Development Kit 11-SP4 (src):    libical-0.43-1.10.6.1
SUSE Linux Enterprise Server 11-SP4 (src):    libical-0.43-1.10.6.1
SUSE Linux Enterprise Debuginfo 11-SP4 (src):    libical-0.43-1.10.6.1
Comment 4 Marcus Meissner 2019-08-31 08:15:23 UTC 
released
First Last Prev Next    This bug is not in your last search results.