CVE-2016-10253: Buffer Overflow
First published: Sat Mar 18 2017(Updated: )
An issue was discovered in Erlang/OTP 18.x. Erlang's generation of compiled regular expressions is vulnerable to a heap overflow. Regular expressions using a malformed extpattern can indirectly specify an offset that is used as an array index. This ordinal permits arbitrary regions within the erts_alloc arena to be both read and written to.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/erlang | 1:23.2.6+dfsg-1+deb11u1 1:25.2.3+dfsg-1 1:25.3.2.12+dfsg-3 | |
| Erlang/OTP | =18.0 | |
| Erlang/OTP | =18.0-rc1 | |
| Erlang/OTP | =18.0-rc2 | |
| Erlang/OTP | =18.0.1 | |
| Erlang/OTP | =18.0.2 | |
| Erlang/OTP | =18.0.3 | |
| Erlang/OTP | =18.1 | |
| Erlang/OTP | =18.1.1 | |
| Erlang/OTP | =18.1.2 | |
| Erlang/OTP | =18.1.3 | |
| Erlang/OTP | =18.1.4 | |
| Erlang/OTP | =18.1.5 | |
| Erlang/OTP | =18.2 | |
| Erlang/OTP | =18.2.1 | |
| Erlang/OTP | =18.2.2 | |
| Erlang/OTP | =18.2.3 | |
| Erlang/OTP | =18.2.4 | |
| Erlang/OTP | =18.2.4.1 | |
| Erlang/OTP | =18.3 | |
| Erlang/OTP | =18.3.1 | |
| Erlang/OTP | =18.3.2 | |
| Erlang/OTP | =18.3.3 | |
| Erlang/OTP | =18.3.4 | |
| Erlang/OTP | =18.3.4.1 | |
| Erlang/OTP | =18.3.4.2 | |
| Erlang/OTP | =18.3.4.3 | |
| Erlang/OTP | =18.3.4.4 | |
| Erlang/OTP | =18.3.4.5 | |
| Erlang/OTP | =19.0 | |
| Erlang/OTP | =19.0-rc1 | |
| Erlang/OTP | =19.0-rc2 | |
| Erlang/OTP | =19.0.1 | |
| Erlang/OTP | =19.0.2 | |
| Erlang/OTP | =19.0.3 | |
| Erlang/OTP | =19.0.4 | |
| Erlang/OTP | =19.0.5 | |
| Erlang/OTP | =19.0.6 | |
| Erlang/OTP | =19.0.7 | |
| Erlang/OTP | =19.1 | |
| Erlang/OTP | =19.1.1 | |
| Erlang/OTP | =19.1.2 | |
| Erlang/OTP | =19.1.3 | |
| Erlang/OTP | =19.1.4 | |
| Erlang/OTP | =19.1.5 | |
| Erlang/OTP | =19.1.6 | |
| Erlang/OTP | =19.1.6.1 | |
| Erlang/OTP | =19.2 | |
| Erlang/OTP | =19.2.1 | |
| Erlang/OTP | =19.2.2 | |
| Erlang/OTP | =19.2.3 | |
| Erlang/OTP | =19.2.3.1 | |
| Erlang/OTP | =19.3 | |
| Erlang/OTP | =19.3.1 | |
| Erlang/OTP | =19.3.2 | |
| Erlang/OTP | =19.3.3 | |
| Erlang/OTP | =19.3.4 | |
| Erlang/OTP | =19.3.5 | |
| Erlang/OTP | =19.3.6 | |
| Erlang/OTP | =19.3.6.1 | |
| Erlang/OTP | =19.3.6.2 | |
| Erlang/OTP | =19.3.6.3 | |
| Erlang/OTP | =19.3.6.4 | |
| Erlang/OTP | =19.3.6.5 | |
| Erlang/OTP | =19.3.6.6 | |
| Erlang/OTP | =19.3.6.7 | |
| Erlang/OTP | =19.3.6.8 | |
| Erlang/OTP | =19.3.6.9 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://github.com/erlang/otp/pull/1108
- https://usn.ubuntu.com/3571-1/
- https://launchpad.net/bugs/cve/CVE-2016-10253
- https://security-tracker.debian.org/tracker/CVE-2016-10253
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10253
- https://nvd.nist.gov/vuln/detail/CVE-2016-10253
- https://ubuntu.com/security/CVE-2016-10253
Frequently Asked Questions
What is the severity of CVE-2016-10253?
CVE-2016-10253 is classified as a high severity vulnerability due to the potential for heap overflow leading to arbitrary code execution.
How do I fix CVE-2016-10253?
To fix CVE-2016-10253, update your Erlang/OTP installation to version 19.0 or later.
What versions of Erlang/OTP are affected by CVE-2016-10253?
Erlang/OTP versions prior to 19.0, including 18.x, are affected by CVE-2016-10253.
Is CVE-2016-10253 a remote code execution vulnerability?
Yes, CVE-2016-10253 can potentially allow an attacker to execute arbitrary code remotely due to the heap overflow issue.
Can CVE-2016-10253 be exploited through user input?
Yes, CVE-2016-10253 can be exploited when processing malformed regular expressions that come from user input.
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/author
- agent/severity
- agent/weakness
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/softwarecombine
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-index
- package-manager/debian
- vendor/erlang
- canonical/erlang/otp
- version/erlang/otp/18.0
- version/erlang/otp/18.0-rc1
- version/erlang/otp/18.0-rc2
- version/erlang/otp/18.0.1
- version/erlang/otp/18.0.2
- version/erlang/otp/18.0.3
- version/erlang/otp/18.1
- version/erlang/otp/18.1.1
- version/erlang/otp/18.1.2
- version/erlang/otp/18.1.3
- version/erlang/otp/18.1.4
- version/erlang/otp/18.1.5
- version/erlang/otp/18.2
- version/erlang/otp/18.2.1
- version/erlang/otp/18.2.2
- version/erlang/otp/18.2.3
- version/erlang/otp/18.2.4
- version/erlang/otp/18.2.4.1
- version/erlang/otp/18.3
- version/erlang/otp/18.3.1
- version/erlang/otp/18.3.2
- version/erlang/otp/18.3.3
- version/erlang/otp/18.3.4
- version/erlang/otp/18.3.4.1
- version/erlang/otp/18.3.4.2
- version/erlang/otp/18.3.4.3
- version/erlang/otp/18.3.4.4
- version/erlang/otp/18.3.4.5
- version/erlang/otp/19.0
- version/erlang/otp/19.0-rc1
- version/erlang/otp/19.0-rc2
- version/erlang/otp/19.0.1
- version/erlang/otp/19.0.2
- version/erlang/otp/19.0.3
- version/erlang/otp/19.0.4
- version/erlang/otp/19.0.5
- version/erlang/otp/19.0.6
- version/erlang/otp/19.0.7
- version/erlang/otp/19.1
- version/erlang/otp/19.1.1
- version/erlang/otp/19.1.2
- version/erlang/otp/19.1.3
- version/erlang/otp/19.1.4
- version/erlang/otp/19.1.5
- version/erlang/otp/19.1.6
- version/erlang/otp/19.1.6.1
- version/erlang/otp/19.2
- version/erlang/otp/19.2.1
- version/erlang/otp/19.2.2
- version/erlang/otp/19.2.3
- version/erlang/otp/19.2.3.1
- version/erlang/otp/19.3
- version/erlang/otp/19.3.1
- version/erlang/otp/19.3.2
- version/erlang/otp/19.3.3
- version/erlang/otp/19.3.4
- version/erlang/otp/19.3.5
- version/erlang/otp/19.3.6
- version/erlang/otp/19.3.6.1
- version/erlang/otp/19.3.6.2
- version/erlang/otp/19.3.6.3
- version/erlang/otp/19.3.6.4
- version/erlang/otp/19.3.6.5
- version/erlang/otp/19.3.6.6
- version/erlang/otp/19.3.6.7
- version/erlang/otp/19.3.6.8
- version/erlang/otp/19.3.6.9