Candidate: CVE-2016-9036
PublicDate: 2016-12-23 22:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9036
 https://github.com/tarantool/tarantool/issues/1991
 https://github.com/tarantool/tarantool/commit/feb8ff9223e240afd3e195026bb42aded49f9a6c
Description:
 An exploitable incorrect return value vulnerability exists in the mp_check
 function of Tarantool's Msgpuck library 1.0.3. A specially crafted packet
 can cause the mp_check function to incorrectly return success when trying
 to check if decoding a map16 packet will read outside the bounds of a
 buffer, resulting in a denial of service vulnerability.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]

Patches_tarantool:
upstream_tarantool: released (1.7.2.385.g952d79e-1)
precise_tarantool: not-affected
precise/esm_tarantool: DNE (precise was not-affected)
trusty_tarantool: not-affected
trusty/esm_tarantool: DNE (trusty was not-affected)
vivid/stable-phone-overlay_tarantool: DNE
vivid/ubuntu-core_tarantool: DNE
xenial_tarantool: ignored (end of standard support, was needed)
yakkety_tarantool: ignored (reached end-of-life)
zesty_tarantool: ignored (reached end-of-life)
artful_tarantool: not-affected (1.7.2.385.g952d79e-1)
bionic_tarantool: DNE
cosmic_tarantool: not-affected (1.7.2.385.g952d79e-1)
disco_tarantool: not-affected (1.7.2.385.g952d79e-1)
eoan_tarantool: not-affected (1.7.2.385.g952d79e-1)
focal_tarantool: not-affected (1.7.2.385.g952d79e-1)
groovy_tarantool: not-affected (1.7.2.385.g952d79e-1)
hirsute_tarantool: not-affected (1.7.2.385.g952d79e-1)
impish_tarantool: not-affected (1.7.2.385.g952d79e-1)
jammy_tarantool: not-affected (1.7.2.385.g952d79e-1)
devel_tarantool: not-affected (1.7.2.385.g952d79e-1)

Patches_msgpuck:
 upstream: https://github.com/rtsisyk/msgpuck/commit/d2c366e27eea4a5a24c6ec36ffcc4f4fd5b361ac
upstream_msgpuck: needs-triage
precise_msgpuck: DNE
precise/esm_msgpuck: DNE
trusty_msgpuck: DNE
trusty/esm_msgpuck: DNE
vivid/stable-phone-overlay_msgpuck: DNE
vivid/ubuntu-core_msgpuck: DNE
xenial_msgpuck: ignored (end of standard support, was needed)
yakkety_msgpuck: ignored (reached end-of-life)
zesty_msgpuck: ignored (reached end-of-life)
artful_msgpuck: ignored (reached end-of-life)
bionic_msgpuck: released (1.0.3-1.1)
cosmic_msgpuck: released (1.0.3-1.1)
disco_msgpuck: released (1.0.3-1.1)
eoan_msgpuck: released (1.0.3-1.1)
focal_msgpuck: released (1.0.3-1.1)
groovy_msgpuck: released (1.0.3-1.1)
hirsute_msgpuck: released (1.0.3-1.1)
impish_msgpuck: released (1.0.3-1.1)
jammy_msgpuck: released (1.0.3-1.1)
devel_msgpuck: released (1.0.3-1.1)