CVE-2016-9843

CVSS v3.1 9.8 (Critical)

CVSS v2.0 7.5 (High)

EPSS 1.38 % (87^th)

Affected Products 24

Advisories 42

The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.

Weaknesses

CWE-NVD-noinfo

CVE Status: PUBLISHED
CNA: OpenText
Published Date: 2017-05-23 04:29:01
(7 years ago)
Updated Date: 2023-11-07 02:37:36
(10 months ago)

Affected Products

Apple

Netapp

Nodejs

Node.js

Opensuse

Oracle

Redhat

Zlib

Zlib

Configuration #1

		CPE23	From	Up To
	Zlib from 1.2.0 version and prior 1.2.9 version	cpe:2.3:a:zlib:zlib	>= 1.2.0	< 1.2.9

Configuration #2

		CPE23	From	Up To
	Opensuse Leap 42.1	cpe:2.3:o:opensuse:leap:42.1
	Opensuse Leap 42.2	cpe:2.3:o:opensuse:leap:42.2
	Opensuse 13.2	cpe:2.3:o:opensuse:opensuse:13.2

Configuration #3

		CPE23	From	Up To
	Debian Linux 8.0	cpe:2.3:o:debian:debian_linux:8.0

Configuration #4

		CPE23	From	Up To
	Canonical Ubuntu Linux 16.04	cpe:2.3:o:canonical:ubuntu_linux:16.04:::*:esm
	Canonical Ubuntu Linux 18.04	cpe:2.3:o:canonical:ubuntu_linux:18.04:::*:lts

Configuration #5

	CPE23	From	Up To
Oracle Database Server 18c	cpe:2.3:a:oracle:database_server:18c
Oracle Jdk 1.6.0 Update161	cpe:2.3:a:oracle:jdk:1.6.0:update161
Oracle Jdk 1.7.0 Update151	cpe:2.3:a:oracle:jdk:1.7.0:update151
Oracle Jdk 1.8.0 Update144	cpe:2.3:a:oracle:jdk:1.8.0:update144
Oracle Jre 1.6.0 Update161	cpe:2.3:a:oracle:jre:1.6.0:update161
Oracle Jre 1.7.0 Update151	cpe:2.3:a:oracle:jre:1.7.0:update151
Oracle Jre 1.8.0 Update144	cpe:2.3:a:oracle:jre:1.8.0:update144
Oracle Mysql from 5.5.0 version and 5.5.61 and prior versions	cpe:2.3:a:oracle:mysql	>= 5.5.0	<= 5.5.61
Oracle Mysql from 5.6.0 version and 5.6.41 and prior versions	cpe:2.3:a:oracle:mysql	>= 5.6.0	<= 5.6.41
Oracle Mysql from 5.7.0 version and 5.7.23 and prior versions	cpe:2.3:a:oracle:mysql	>= 5.7.0	<= 5.7.23
Oracle Mysql from 8.0.0 version and 8.0.12 and prior versions	cpe:2.3:a:oracle:mysql	>= 8.0.0	<= 8.0.12

Configuration #6

		CPE23	From	Up To
	Redhat Satellite 5.8	cpe:2.3:a:redhat:satellite:5.8
	Redhat Enterprise Linux Desktop 6.0	cpe:2.3:o:redhat:enterprise_linux_desktop:6.0
	Redhat Enterprise Linux Desktop 7.0	cpe:2.3:o:redhat:enterprise_linux_desktop:7.0
	Redhat Enterprise Linux Eus 7.4	cpe:2.3:o:redhat:enterprise_linux_eus:7.4
	Redhat Enterprise Linux Eus 7.5	cpe:2.3:o:redhat:enterprise_linux_eus:7.5
	Redhat Enterprise Linux Server 6.0	cpe:2.3:o:redhat:enterprise_linux_server:6.0
	Redhat Enterprise Linux Server 7.0	cpe:2.3:o:redhat:enterprise_linux_server:7.0
	Redhat Enterprise Linux Workstation 6.0	cpe:2.3:o:redhat:enterprise_linux_workstation:6.0
	Redhat Enterprise Linux Workstation 7.0	cpe:2.3:o:redhat:enterprise_linux_workstation:7.0

Configuration #7

	CPE23	From	Up To
Apple Iphone Os prior 11 version	cpe:2.3:o:apple:iphone_os		< 11
Apple Mac Os X from 10.0.0 version and prior 10.13.0 version	cpe:2.3:o:apple:mac_os_x	>= 10.0.0	< 10.13.0
Apple Tvos prior 11.0 version	cpe:2.3:o:apple:tvos		< 11.0
Apple Watchos prior 4 version	cpe:2.3:o:apple:watchos		< 4

Configuration #8

	CPE23	From
Netapp Active Iq Unified Manager for Windows from 7.3 version	cpe:2.3:a:netapp:active_iq_unified_manager::::::windows	>= 7.3
Netapp Active Iq Unified Manager for Vmware Vsphere from 9.5 version	cpe:2.3:a:netapp:active_iq_unified_manager::::::vmware_vsphere	>= 9.5
Netapp Oncommand Insight	cpe:2.3:a:netapp:oncommand_insight:-
Netapp Oncommand Workflow Automation	cpe:2.3:a:netapp:oncommand_workflow_automation:-
Netapp Snapcenter	cpe:2.3:a:netapp:snapcenter:-

Configuration #9

	CPE23	From	Up To
Mariadb from 5.5.0 version and prior 5.5.62 version	cpe:2.3:a:mariadb:mariadb	>= 5.5.0	< 5.5.62
Mariadb from 10.0.0 version and prior 10.0.37 version	cpe:2.3:a:mariadb:mariadb	>= 10.0.0	< 10.0.37
Mariadb from 10.1.0 version and prior 10.1.37 version	cpe:2.3:a:mariadb:mariadb	>= 10.1.0	< 10.1.37
Mariadb from 10.2.0 version and prior 10.2.19 version	cpe:2.3:a:mariadb:mariadb	>= 10.2.0	< 10.2.19
Mariadb from 10.3.0 version and prior 10.3.11 version	cpe:2.3:a:mariadb:mariadb	>= 10.3.0	< 10.3.11

Configuration #10

	CPE23	From	Up To
Nodejs Node.js from 4.0.0 version and 4.1.2 and prior versions	cpe:2.3:a:nodejs:node.js::::*:-	>= 4.0.0	<= 4.1.2
Nodejs Node.js from 4.2.0 version and prior 4.8.2 version	cpe:2.3:a:nodejs:node.js::::*:lts	>= 4.2.0	< 4.8.2
Nodejs Node.js from 6.0.0 version and 6.8.1 and prior versions	cpe:2.3:a:nodejs:node.js::::*:-	>= 6.0.0	<= 6.8.1
Nodejs Node.js from 6.9.0 version and prior 6.10.2 version	cpe:2.3:a:nodejs:node.js::::*:lts	>= 6.9.0	< 6.10.2
Nodejs Node.js from 7.0.0 version and prior 7.6.0 version	cpe:2.3:a:nodejs:node.js::::*:-	>= 7.0.0	< 7.6.0