CVE-2019-19906

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 19-12-2019 07:15

Last modified: - 12-04-2022 08:41

Total changes: - 6

Description

cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash is ultimately caused by an off-by-one error in _sasl_add_string in common.c in cyrus-sasl.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Low

Attack complexity

Network

Attack vector

High

Availability

None

Confidentiality

None

Integrity

None

Privileges required

Unchanged

Scope

None

User interaction

7.5

Base score

3.9

3.6

Exploitability score

Impact score

Verification logic

vendor=cyrusimap AND product=cyrus-sasl AND versionEndExcluding=2.1.28

vendor=Debian AND product=debian_linux AND version=8.0

vendor=Debian AND product=debian_linux AND version=9.0

vendor=Debian AND product=debian_linux AND version=10.0

vendor=canonical AND product=ubuntu_linux AND version=12.04 AND software_edition=-

vendor=canonical AND product=ubuntu_linux AND version=14.04 AND software_edition=esm

vendor=canonical AND product=ubuntu_linux AND version=16.04 AND software_edition=esm

vendor=canonical AND product=ubuntu_linux AND version=18.04 AND software_edition=lts

vendor=canonical AND product=ubuntu_linux AND version=19.10

vendor=fedoraproject AND product=fedora AND version=31

vendor=fedoraproject AND product=fedora AND version=32

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_web_server AND version=2.0.0

vendor=apple AND product=mac_os_x AND version=10.14.6 AND update=-

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=5.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=6.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=7.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=8.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_eus AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_ibm_z_systems AND version=8.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_ibm_z_systems_eus AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_power_little_endian AND version=8.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_power_little_endian_eus AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_aus AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_tus AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_update_services_for_sap_solutions AND version=8.4

vendor=apple AND product=ipados AND version=13.6

vendor=apple AND product=iphone_os AND version=13.6

vendor=apple AND product=mac_os_x AND versionStartIncluding=10.13.0 AND versionEndExcluding=10.13.6

vendor=apple AND product=mac_os_x AND versionEndExcluding=10.13.6

vendor=apple AND product=mac_os_x AND version=10.13.6 AND update=-

vendor=apple AND product=mac_os_x AND version=10.13.6 AND update=security_update_2018-002

vendor=apple AND product=mac_os_x AND version=10.13.6 AND update=security_update_2018-003

vendor=apple AND product=mac_os_x AND version=10.13.6 AND update=security_update_2019-001

vendor=apple AND product=mac_os_x AND version=10.13.6 AND update=security_update_2019-002

vendor=apple AND product=mac_os_x AND version=10.13.6 AND update=security_update_2019-003

vendor=apple AND product=mac_os_x AND version=10.13.6 AND update=security_update_2019-004

vendor=apple AND product=mac_os_x AND version=10.13.6 AND update=security_update_2019-005

vendor=apple AND product=mac_os_x AND version=10.13.6 AND update=security_update_2019-006

vendor=apple AND product=mac_os_x AND version=10.13.6 AND update=security_update_2019-007

vendor=apple AND product=mac_os_x AND version=10.13.6 AND update=security_update_2020-001

vendor=apple AND product=mac_os_x AND version=10.13.6 AND update=security_update_2020-002

vendor=apple AND product=mac_os_x AND version=10.13.6 AND update=security_update_2020-003

vendor=apple AND product=mac_os_x AND version=10.14.6 AND update=security_update_2019-001

vendor=apple AND product=mac_os_x AND version=10.14.6 AND update=security_update_2019-002

vendor=apple AND product=mac_os_x AND version=10.14.6 AND update=security_update_2019-004

vendor=apple AND product=mac_os_x AND version=10.14.6 AND update=security_update_2019-005

vendor=apple AND product=mac_os_x AND version=10.14.6 AND update=security_update_2019-006

vendor=apple AND product=mac_os_x AND version=10.14.6 AND update=security_update_2019-007

vendor=apple AND product=mac_os_x AND version=10.14.6 AND update=security_update_2020-001

vendor=apple AND product=mac_os_x AND version=10.14.6 AND update=security_update_2020-002

vendor=apple AND product=mac_os_x AND version=10.14.6 AND update=security_update_2020-003

vendor=apple AND product=mac_os_x AND versionStartIncluding=10.15.0 AND versionEndExcluding=10.15.6

AND

vendor=apache AND product=bookkeeper AND version=4.12.1

vendor=centos AND product=centos AND version=7.0

Reference

https://github.com/cyrusimap/cyrus-sasl/issues/587
https://www.openldap.org/its/index.cgi/Incoming?id=9123
[debian-lts-announce] 20191220 [SECURITY] [DLA 2044-1] cyrus-sasl2 security update-Mailing List, Third Party Advisory
DSA-4591-Third Party Advisory
20191225 [SECURITY] [DSA 4591-1] cyrus-sasl2 security update-Mailing List, Third Party Advisory
USN-4256-1-Patch, Third Party Advisory
FEDORA-2020-51d591d035-Mailing List, Third Party Advisory
FEDORA-2020-bf829f9a84-Mailing List, Third Party Advisory
https://support.apple.com/kb/HT211288
https://support.apple.com/kb/HT211289
20200717 APPLE-SA-2020-07-15-2 macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra-Mailing List, Third Party Advisory
20200717 APPLE-SA-2020-07-15-1 iOS 13.6 and iPadOS 13.6-Mailing List, Third Party Advisory
[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8-Issue Tracking, Mailing List, Third Party Advisory
[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8-Issue Tracking, Mailing List, Third Party Advisory
[oss-security] 20220223 Fwd: Cyrus-SASL 2.1.28 released [fixes CVE-2022-24407 & CVE-2019-19906]-Mailing List, Patch, Release Notes, Third Party Advisory

Keywords

CVE-2019-19906

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2019-19906

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures