CVE-2011-2516

Off-by-one error in the XML signature feature in Apache XML Security for C++ 1.6.0, as used in Shibboleth before 2.4.3 and possibly other products, allows remote attackers to cause a denial of service (crash) via a signature using a large RSA key, which triggers a buffer overflow.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
VendorProductVersion
apachexml_security_for_c\+\+
1.6.0
shibbolethshibboleth-sp
𝑥
≤ 2.4.2
shibbolethshibboleth-sp
1.3.1
shibbolethshibboleth-sp
1.3.2
shibbolethshibboleth-sp
1.3.3
shibbolethshibboleth-sp
1.3.4
shibbolethshibboleth-sp
1.3.5
shibbolethshibboleth-sp
1.3f:f
shibbolethshibboleth-sp
2.0
shibbolethshibboleth-sp
2.1
shibbolethshibboleth-sp
2.2
shibbolethshibboleth-sp
2.2.1
shibbolethshibboleth-sp
2.3
shibbolethshibboleth-sp
2.3.1
shibbolethshibboleth-sp
2.4
shibbolethshibboleth-sp
2.4.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
xml-security-c
bullseye
2.0.2-4
fixed
sid
2.0.4-2
fixed
trixie
2.0.4-2
fixed
bookworm
2.0.4-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
shibboleth-sp2
artful
not-affected
zesty
not-affected
yakkety
ignored
xenial
not-affected
wily
ignored
vivid
ignored
utopic
ignored
trusty
dne
saucy
ignored
raring
ignored
quantal
ignored
precise
ignored
oneiric
ignored
natty
ignored
maverick
ignored
lucid
ignored
hardy
dne
xml-security-c
artful
not-affected
zesty
not-affected
yakkety
not-affected
xenial
not-affected
wily
not-affected
vivid
not-affected
utopic
not-affected
trusty
dne
saucy
not-affected
raring
not-affected
quantal
not-affected
precise
not-affected
oneiric
not-affected
natty
Fixed 1.5.1-3+squeeze1build0.11.04.1
released
maverick
Fixed 1.5.1-3+squeeze1build0.10.10.1
released
lucid
Fixed 1.5.1-3+squeeze1build0.10.04.1
released
hardy
ignored
Common Weakness Enumeration
References
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/063159.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/063229.html
http://santuario.apache.org/secadv/CVE-2011-2516.txt
http://secunia.com/advisories/45151
http://secunia.com/advisories/45191
http://secunia.com/advisories/45198
http://secunia.com/advisories/45491
http://shibboleth.internet2.edu/secadv/secadv_20110706.txt
http://www.debian.org/security/2011/dsa-2277
http://www.securityfocus.com/archive/1/518756/100/0/threaded
http://www.securityfocus.com/bid/48611
http://www.securitytracker.com/id?1025755
https://exchange.xforce.ibmcloud.com/vulnerabilities/68420
https://issues.apache.org/jira/browse/SANTUARIO-271
https://lists.apache.org/thread.html/680e6938b6412e26d5446054fd31de2011d33af11786b989127d1cc3%40%3Ccommits.santuario.apache.org%3E
https://lists.apache.org/thread.html/r1c07a561426ec5579073046ad7f4207cdcef452bb3100abaf908e0cd%40%3Ccommits.santuario.apache.org%3E
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/063159.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/063229.html
http://santuario.apache.org/secadv/CVE-2011-2516.txt
http://secunia.com/advisories/45151
http://secunia.com/advisories/45191
http://secunia.com/advisories/45198
http://secunia.com/advisories/45491
http://shibboleth.internet2.edu/secadv/secadv_20110706.txt
http://www.debian.org/security/2011/dsa-2277
http://www.securityfocus.com/archive/1/518756/100/0/threaded
http://www.securityfocus.com/bid/48611
http://www.securitytracker.com/id?1025755
https://exchange.xforce.ibmcloud.com/vulnerabilities/68420
https://issues.apache.org/jira/browse/SANTUARIO-271
https://lists.apache.org/thread.html/680e6938b6412e26d5446054fd31de2011d33af11786b989127d1cc3%40%3Ccommits.santuario.apache.org%3E
https://lists.apache.org/thread.html/r1c07a561426ec5579073046ad7f4207cdcef452bb3100abaf908e0cd%40%3Ccommits.santuario.apache.org%3E