CVE-2016-5636

critical
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Integer overflow in the get_data function in zipimport.c in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 allows remote attackers to have unspecified impact via a negative data size value, which triggers a heap-based buffer overflow.

References

http://rhn.redhat.com/errata/RHSA-2016-2586.html

http://www.openwall.com/lists/oss-security/2016/06/15/15

http://www.openwall.com/lists/oss-security/2016/06/16/1

http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html

http://www.securityfocus.com/bid/91247

http://www.securitytracker.com/id/1038138

http://www.splunk.com/view/SP-CAAAPSV

http://www.splunk.com/view/SP-CAAAPUE

https://bugs.python.org/issue26171

https://docs.python.org/3.4/whatsnew/changelog.html#python-3-4-5

https://docs.python.org/3.5/whatsnew/changelog.html#python-3-5-2

https://hg.python.org/cpython/raw-file/v2.7.12/Misc/NEWS

https://lists.debian.org/debian-lts-announce/2019/02/msg00011.html

https://security.gentoo.org/glsa/201701-18

Details

Source: MITRE

Published: 2016-09-02

Updated: 2019-02-09

Type: CWE-190

Risk Information

CVSS v2

Base Score: 10

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 10

Severity: HIGH

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 3.9

Severity: CRITICAL

Tenable Plugins

View all (34 total)

IDNameProductFamilySeverity
133259SUSE SLED15 / SLES15 Security Update : python (SUSE-SU-2020:0234-1) (BEAST) (httpoxy)NessusSuSE Local Security Checks
critical
133172openSUSE Security Update : python3 (openSUSE-2020-86) (BEAST) (httpoxy)NessusSuSE Local Security Checks
critical
133036SUSE SLED15 / SLES15 Security Update : python3 (SUSE-SU-2020:0114-1) (BEAST) (httpoxy)NessusSuSE Local Security Checks
critical
124937EulerOS Virtualization 3.0.1.0 : python (EulerOS-SA-2019-1434)NessusHuawei Local Security Checks
critical
122036Debian DLA-1663-1 : python3.4 security updateNessusDebian Local Security Checks
critical
121570SUSE SLES12 Security Update : python (SUSE-SU-2019:0223-1) (httpoxy)NessusSuSE Local Security Checks
critical
112012SUSE SLES11 Security Update : python (SUSE-SU-2018:2408-1)NessusSuSE Local Security Checks
critical
99850EulerOS 2.0 SP1 : python (EulerOS-SA-2017-1003)NessusHuawei Local Security Checks
critical
99134macOS 10.12.x < 10.12.4 Multiple Vulnerabilities (httpoxy)NessusMacOS X Local Security Checks
critical
96399GLSA-201701-18 : Python: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
95857Scientific Linux Security Update : python on SL7.x x86_64 (20161103)NessusScientific Linux Local Security Checks
critical
95332CentOS 7 : python (CESA-2016:2586)NessusCentOS Local Security Checks
critical
95284Ubuntu 12.04 LTS / 14.04 LTS / 16.04 LTS : python2.7, python3.2, python3.4, python3.5 vulnerabilities (USN-3134-1) (httpoxy)NessusUbuntu Local Security Checks
critical
94969SUSE SLED12 / SLES12 Security Update : python3 (SUSE-SU-2016:2859-1) (httpoxy)NessusSuSE Local Security Checks
critical
94932Splunk Enterprise < 5.0.17 / 6.0.13 / 6.1.12 / 6.2.12 / 6.3.8 / 6.4.4 or Splunk Light < 6.5.0 Multiple VulnerabilitiesNessusCGI abuses
critical
94707Oracle Linux 7 : python (ELSA-2016-2586)NessusOracle Linux Local Security Checks
critical
94549RHEL 7 : python (RHSA-2016:2586)NessusRed Hat Local Security Checks
critical
94321SUSE SLED12 / SLES12 Security Update : python3 (SUSE-SU-2016:2653-1) (httpoxy)NessusSuSE Local Security Checks
critical
93300SUSE SLED12 / SLES12 Security Update : python (SUSE-SU-2016:2106-1) (httpoxy)NessusSuSE Local Security Checks
critical
93069openSUSE Security Update : python3 (openSUSE-2016-997) (httpoxy)NessusSuSE Local Security Checks
critical
92595openSUSE Security Update : python (openSUSE-2016-906)NessusSuSE Local Security Checks
critical
92471Amazon Linux AMI : python26 / python27,python34 (ALAS-2016-724)NessusAmazon Linux Local Security Checks
critical
92336Fedora 23 : python (2016-eff21665e7)NessusFedora Local Security Checks
critical
92329Fedora 23 : python3 (2016-308f78b2f4)NessusFedora Local Security Checks
critical
92297Fedora 24 : python3 (2016-e63a732c9d)NessusFedora Local Security Checks
critical
92295Fedora 22 : python (2016-e37f15a5f4)NessusFedora Local Security Checks
critical
92271Fedora 24 : python (2016-9932f852c7)NessusFedora Local Security Checks
critical
92251Fedora 22 : python3 (2016-5c52dcfe47)NessusFedora Local Security Checks
critical
92175Fedora 24 : python (2016-d5917e939e)NessusFedora Local Security Checks
critical
92173Fedora 23 : python (2016-d3a529aad6)NessusFedora Local Security Checks
critical
92076Fedora 23 : python3 (2016-32e5a8c3a8)NessusFedora Local Security Checks
critical
92066Fedora 24 : python3 (2016-22eab18150)NessusFedora Local Security Checks
critical
91733Debian DLA-522-1 : python2.7 security updateNessusDebian Local Security Checks
critical
91699FreeBSD : Python -- Integer overflow in zipimport module (1d0f6852-33d8-11e6-a671-60a44ce6887b)NessusFreeBSD Local Security Checks
critical