CVE-2017-12613

high

Description

When apr_time_exp*() or apr_os_exp_time*() functions are invoked with an invalid month field value in Apache Portable Runtime APR 1.6.2 and prior, out of bounds memory may be accessed in converting this value to an apr_time_exp_t value, potentially revealing the contents of a different static heap value or resulting in program termination, and may represent an information disclosure or denial of service vulnerability to applications which call these APR functions with unvalidated external input.

References

https://lists.apache.org/thread.html/12489f2e4a9f9d390235c16298aca0d20658789de80d553513977f13%40%3Cannounce.apache.org%3E

http://www.securityfocus.com/bid/101560

https://svn.apache.org/viewvc?view=revision&revision=1807976

https://access.redhat.com/errata/RHSA-2017:3270

https://access.redhat.com/errata/RHSA-2017:3477

https://access.redhat.com/errata/RHSA-2017:3476

https://access.redhat.com/errata/RHSA-2017:3475

http://www.apache.org/dist/apr/Announcement1.x.html

https://lists.debian.org/debian-lts-announce/2017/11/msg00005.html

https://access.redhat.com/errata/RHSA-2018:0316

https://access.redhat.com/errata/RHSA-2018:0466

https://access.redhat.com/errata/RHSA-2018:0465

https://access.redhat.com/errata/RHSA-2018:1253

http://www.securitytracker.com/id/1042004

https://lists.apache.org/thread.html/[email protected]%3Ccommits.apr.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Ccommits.apr.apache.org%3E

http://www.openwall.com/lists/oss-security/2021/08/23/1

https://lists.apache.org/thread.html/[email protected]%3Cdev.apr.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Cannounce.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Cdev.apr.apache.org%3E

https://lists.debian.org/debian-lts-announce/2022/01/msg00023.html

Details

Source: MITRE

Published: 2017-10-24

Updated: 2022-04-18

Type: CWE-125

Risk Information

CVSS v2

Base Score: 3.6

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:P

Impact Score: 4.9

Exploitability Score: 3.9

Severity: LOW

CVSS v3

Base Score: 7.1

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Impact Score: 5.2

Exploitability Score: 1.8

Severity: HIGH