OpenSUSE Linux update for unixODBC

Published: 2018-07-02

Risk	High
Patch available	YES
Number of vulnerabilities	2
CVE-ID	CVE-2018-7409 CVE-2018-7485
CWE-ID	CWE-120 CWE-119
Exploitation vector	Network
Public exploit	N/A
Vulnerable software Subscribe	openSUSE Leap Operating systems & Components / Operating system package or component
Vendor	SDB

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Buffer overflow

EUVDB-ID: #VU11274

Risk: High

CVSSv3.1: 8.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2018-7409

CWE-ID: CWE-120 - Buffer overflow

Exploit availability: No

Description

The vulnerability allows a remote unauthenticated attacker to cause DoS condition or execute arbitrary code on the target system.

The weakness exists in the unicode_to_ansi_copy() function due to buffer overflow. A remote attacker can send specially crafted input, cause the service to crash or execute arbitrary code.

Successful exploitation of the vulnerability may result in system compromise.

Mitigation

Update the affected packages.

Vulnerable software versions

openSUSE Leap: 42.3

CPE2.3

cpe:2.3:o:sdb:opensuse_leap:42.3:*:*:*:*:*:*:

External links

http://lists.opensuse.org/opensuse-security-announce/2018-06/msg00050.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Memory corruption

EUVDB-ID: #VU11172

Risk: Low

CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2018-7485

CWE-ID: CWE-119 - Memory corruption