Candidate: CVE-2018-19497
PublicDate: 2018-11-29 23:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19497
 https://github.com/sleuthkit/sleuthkit/pull/1374
Description:
 In The Sleuth Kit (TSK) through 4.6.4, hfs_cat_traverse in tsk/fs/hfs.c
 does not properly determine when a key length is too large, which allows
 attackers to cause a denial of service (SEGV on unknown address with READ
 memory access in a tsk_getu16 call in hfs_dir_open_meta_cb in
 tsk/fs/hfs_dent.c).
Ubuntu-Description:
Notes:
 ebarretto> It looks like the versions in trusty and xenial are not
 ebarretto> affected.
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914796
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H [6.5 MEDIUM]


Patches_sleuthkit:
upstream_sleuthkit: needs-triage
precise/esm_sleuthkit: DNE
trusty_sleuthkit: not-affected
trusty/esm_sleuthkit: DNE (trusty was not-affected)
xenial_sleuthkit: not-affected
bionic_sleuthkit: needed
cosmic_sleuthkit: ignored (reached end-of-life)
disco_sleuthkit: not-affected (4.6.5-1)
eoan_sleuthkit: not-affected (4.6.5-1)
focal_sleuthkit: not-affected (4.6.5-1)
groovy_sleuthkit: not-affected (4.6.5-1)
hirsute_sleuthkit: not-affected (4.6.5-1)
impish_sleuthkit: not-affected (4.6.5-1)
jammy_sleuthkit: not-affected (4.6.5-1)
devel_sleuthkit: not-affected (4.6.5-1)