CVE-2016-9843

CVSS 9.8 - CRITICAL

Description

The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.

Affected Products

Vendor	Product	Version
zlib	zlib	`All versions`
opensuse	leap	`42.1`
opensuse	leap	`42.2`
opensuse	opensuse	`13.2`
debian	debian_linux	`8.0`
canonical	ubuntu_linux	`16.04`
canonical	ubuntu_linux	`18.04`
oracle	database_server	`18c`
oracle	jdk	`1.6.0`
oracle	jdk	`1.7.0`
oracle	jdk	`1.8.0`
oracle	jre	`1.6.0`
oracle	jre	`1.7.0`
oracle	jre	`1.8.0`
oracle	mysql	`All versions`
oracle	mysql	`All versions`
oracle	mysql	`All versions`
oracle	mysql	`All versions`
redhat	satellite	`5.8`
redhat	enterprise_linux_desktop	`6.0`
redhat	enterprise_linux_desktop	`7.0`
redhat	enterprise_linux_eus	`7.4`
redhat	enterprise_linux_eus	`7.5`
redhat	enterprise_linux_server	`6.0`
redhat	enterprise_linux_server	`7.0`
redhat	enterprise_linux_workstation	`6.0`
redhat	enterprise_linux_workstation	`7.0`
apple	iphone_os	`All versions`
apple	mac_os_x	`All versions`
apple	tvos	`All versions`
apple	watchos	`All versions`
netapp	active_iq_unified_manager	`All versions`
netapp	active_iq_unified_manager	`All versions`
netapp	oncommand_insight	`-`
netapp	oncommand_workflow_automation	`-`
netapp	snapcenter	`-`
mariadb	mariadb	`All versions`
mariadb	mariadb	`All versions`
mariadb	mariadb	`All versions`
mariadb	mariadb	`All versions`
mariadb	mariadb	`All versions`
nodejs	node.js	`All versions`
nodejs	node.js	`All versions`
nodejs	node.js	`All versions`
nodejs	node.js	`All versions`
nodejs	node.js	`All versions`