CVE-2017-7892

Metadata

medium
5.0
capnproto
CVE-2017-7892
cve.mitre.org, github.com
2017-04-17
2017-10-23 14:20
CVE-2017-7892 capnproto
2017-07-20 21:31
2017-06-16 19:22
2017-06-15 17:13
2017-05-10 23:49
2017-04-28 15:03
2017-04-18 18:03

Description

Sandstorm Cap'n Proto before 0.5.3.1 allows remote crashes related to a compiler optimization. A remote attacker can trigger a segfault in a 32-bit libcapnp application because Cap'n Proto relies on pointer arithmetic calculations that overflow. An example compiler with optimization that elides a bounds check in such calculations is Apple LLVM version 8.1.0 (clang-802.0.41). The attack vector is a crafted far pointer within a message.

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
upstream capnproto 0.5.3.1

Unaffected

Release Package Reason
precise capnproto DNE
precise/esm capnproto DNE
vivid/stable-phone-overlay capnproto ignored
vivid/ubuntu-core capnproto DNE
yakkety capnproto ignored

Needs Triage

Release Package Reason
trusty capnproto needs-triage
xenial capnproto needs-triage
zesty capnproto needs-triage
artful capnproto needs-triage
devel capnproto needs-triage