CVE-2016-3189
Published at:
-
30-06-2016 07:59
Last modified:
-
16-08-2022 03:17
Total changes:
-
6
Description
Common Vulnerability Scoring System (CVSS)
Low
Attack complexity
Network
Attack vector
High
Availability
None
Confidentiality
None
Integrity
None
Privileges required
Unchanged
Scope
Required
User interaction
6.5
Base score
2.8
3.6
Exploitability score
Impact score
Verification logic
Reference
- 1036132-Third Party Advisory, VDB Entry
- https://bugzilla.redhat.com/show_bug.cgi?id=1319648
- [oss-security] 20160620 CVE-2016-3189: bzip2 use-after-free on bzip2recover-Mailing List
- http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html
- 91297-Third Party Advisory, VDB Entry
- GLSA-201708-08-Third Party Advisory
- [debian-lts-announce] 20190624 [SECURITY] [DLA 1833-1] bzip2 security update-Third Party Advisory
- USN-4038-2-Third Party Advisory
- USN-4038-1-Third Party Advisory
- 20190715 [slackware-security] bzip2 (SSA:2019-195-01)-Mailing List, Third Party Advisory
- http://packetstormsecurity.com/files/153644/Slackware-Security-Advisory-bzip2-Updates.html
- FreeBSD-SA-19:18-Third Party Advisory
- 20190806 FreeBSD Security Advisory FreeBSD-SA-19:18.bzip2-Mailing List, Third Party Advisory
- http://packetstormsecurity.com/files/153957/FreeBSD-Security-Advisory-FreeBSD-SA-19-18.bzip2.html
- [kafka-jira] 20200413 [jira] [Updated] (KAFKA-9858) CVE-2016-3189 Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.-Mailing List, Third Party Advisory
- [kafka-dev] 20200413 [jira] [Created] (KAFKA-9858) CVE-2016-3189 Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.-Mailing List, Third Party Advisory
- [kafka-jira] 20200413 [jira] [Created] (KAFKA-9858) CVE-2016-3189 Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.-Mailing List, Third Party Advisory
- [kafka-users] 20200413 CVEs for the dependency software guava and rocksdbjni of Kafka-Mailing List, Third Party Advisory
- [kafka-jira] 20200414 [jira] [Commented] (KAFKA-9858) CVE-2016-3189 Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.-Mailing List, Third Party Advisory
- https://www.oracle.com/security-alerts/cpuoct2020.html
- [kafka-jira] 20210729 [jira] [Commented] (KAFKA-9858) CVE-2016-3189 Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.-Mailing List, Third Party Advisory
- [kafka-jira] 20210729 [jira] [Comment Edited] (KAFKA-9858) CVE-2016-3189 Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.-Mailing List, Third Party Advisory
- [kafka-dev] 20210729 [jira] [Resolved] (KAFKA-9858) CVE-2016-3189 Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.-Mailing List, Third Party Advisory
- [kafka-jira] 20210729 [jira] [Resolved] (KAFKA-9858) CVE-2016-3189 Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.-Mailing List, Third Party Advisory
- [kafka-jira] 20210729 [jira] [Commented] (KAFKA-9858) CVE-2016-3189 Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.-Mailing List, Third Party Advisory
Keywords