{ "id": "CVE-2021-35940", "sourceIdentifier": "security@apache.org", "published": "2021-08-23T10:15:07.230", "lastModified": "2022-12-07T20:14:45.093", "vulnStatus": "Analyzed", "descriptions": [ { "lang": "en", "value": "An out-of-bounds array read in the apr_time_exp*() functions was fixed in the Apache Portable Runtime 1.6.3 release (CVE-2017-12613). The fix for this issue was not carried forward to the APR 1.7.x branch, and hence version 1.7.0 regressed compared to 1.6.3 and is vulnerable to the same issue." }, { "lang": "es", "value": "Se ha corregido una lectura de matrices fuera de l\u00edmites en la funci\u00f3n apr_time_exp*() en Apache Portable Runtime versi\u00f3n 1.6.3 (CVE-2017-12613). La correcci\u00f3n de este problema no se traslad\u00f3 a la rama APR versi\u00f3n 1.7.x, por lo que la versi\u00f3n 1.7.0 retrocedi\u00f3 en comparaci\u00f3n con la versi\u00f3n 1.6.3 y es vulnerable al mismo problema." } ], "metrics": { "cvssMetricV31": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH" }, "exploitabilityScore": 1.8, "impactScore": 5.2 } ], "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:P", "accessVector": "LOCAL", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.6 }, "baseSeverity": "LOW", "exploitabilityScore": 3.9, "impactScore": 4.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-125" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:apache:portable_runtime:1.7.0:*:*:*:*:*:*:*", "matchCriteriaId": "56961B22-99C1-470F-9EDC-B02633745025" } ] } ] }, { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "DFC79B17-E9D2-44D5-93ED-2F959E7A3D43" }, { "vulnerable": true, "criteria": "cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "AD04BEE5-E9A8-4584-A68C-0195CE9C402C" } ] } ] } ], "references": [ { "url": "http://mail-archives.apache.org/mod_mbox/www-announce/201710.mbox/%3CCACsi251B8UaLvM-rrH9fv57-zWi0zhyF3275_jPg1a9VEVVoxw@mail.gmail.com%3E", "source": "security@apache.org", "tags": [ "Mailing List", "Vendor Advisory" ] }, { "url": "http://svn.apache.org/viewvc?view=revision&revision=1891198", "source": "security@apache.org", "tags": [ "Vendor Advisory" ] }, { "url": "http://www.openwall.com/lists/oss-security/2021/08/23/1", "source": "security@apache.org", "tags": [ "Mailing List", "Third Party Advisory" ] }, { "url": "https://dist.apache.org/repos/dist/release/apr/patches/apr-1.7.0-CVE-2021-35940.patch", "source": "security@apache.org", "tags": [ "Patch", "Vendor Advisory" ] }, { "url": "https://lists.apache.org/thread.html/r1c788464a25fbc046a72aff451bc8186386315d92a2dd0349903fa4f@%3Cdev.tomcat.apache.org%3E", "source": "security@apache.org", "tags": [ "Mailing List", "Vendor Advisory" ] }, { "url": "https://lists.apache.org/thread.html/r317c398ee5736e627f7887b06607e5c58b45a696d352ba8c14615f55@%3Cdev.apr.apache.org%3E", "source": "security@apache.org", "tags": [ "Mailing List", "Vendor Advisory" ] }, { "url": "https://lists.apache.org/thread.html/r54c755c74b9e3846cfd84039b1967d37d2870750a02d7c603983f6ed@%3Cdev.tomcat.apache.org%3E", "source": "security@apache.org", "tags": [ "Mailing List", "Vendor Advisory" ] }, { "url": "https://lists.apache.org/thread.html/r72479f4dcffaa8a4732d5a0e87fecc4bace4932e28fc26f7d400e2b3@%3Cdev.tomcat.apache.org%3E", "source": "security@apache.org", "tags": [ "Mailing List", "Vendor Advisory" ] }, { "url": "https://lists.apache.org/thread.html/r72a069753b9363c29732e59ad8f0d22a633fb6a699980407511ac961@%3Cdev.apr.apache.org%3E", "source": "security@apache.org", "tags": [ "Mailing List", "Vendor Advisory" ] }, { "url": "https://lists.apache.org/thread.html/r7bb4a6ed88fc48152174e664aae30ea9a8b058eb5b44cf08cb9beb4b@%3Cdev.apr.apache.org%3E", "source": "security@apache.org", "tags": [ "Mailing List", "Vendor Advisory" ] }, { "url": "https://lists.apache.org/thread.html/r7bb4a6ed88fc48152174e664aae30ea9a8b058eb5b44cf08cb9beb4b@%3Cdev.httpd.apache.org%3E", "source": "security@apache.org", "tags": [ "Mailing List", "Vendor Advisory" ] }, { "url": "https://lists.apache.org/thread.html/ra2868b53339a6af65577146ad87016368c138388b09bff9d2860f50e%40%3Cdev.apr.apache.org%3E", "source": "security@apache.org", "tags": [ "Mailing List", "Vendor Advisory" ] }, { "url": "https://lists.apache.org/thread.html/ra2868b53339a6af65577146ad87016368c138388b09bff9d2860f50e@%3Cdev.apr.apache.org%3E", "source": "security@apache.org", "tags": [ "Mailing List", "Vendor Advisory" ] }, { "url": "https://lists.apache.org/thread.html/ra38094406cc38a05218ebd1158187feda021b0c3a1df400bbf296af8@%3Cdev.apr.apache.org%3E", "source": "security@apache.org", "tags": [ "Mailing List", "Vendor Advisory" ] }, { "url": "https://lists.apache.org/thread.html/rafe54755850e93de287c36540972457b2dd86332106aa7817c7c27fb@%3Cdev.tomcat.apache.org%3E", "source": "security@apache.org", "tags": [ "Mailing List", "Vendor Advisory" ] }, { "url": "https://lists.apache.org/thread.html/rb1f3c85f50fbd924a0051675118d1609e57957a02ece7facb723155b@%3Cannounce.apache.org%3E", "source": "security@apache.org", "tags": [ "Mailing List", "Patch", "Vendor Advisory" ] }, { "url": "https://www.oracle.com/security-alerts/cpujul2022.html", "source": "security@apache.org", "tags": [ "Patch", "Third Party Advisory" ] } ] }