CVE-2016-9888
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2016-9888
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-9888.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2016-9888
- Related
- Published
- 2016-12-08T08:59:02Z
- Modified
- 2024-10-12T02:23:27.858531Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An error within the "tardirectoryfor_file()" function (gsf-infile-tar.c) in GNOME Structured File Library before 1.14.41 can be exploited to trigger a Null pointer dereference and subsequently cause a crash via a crafted TAR file.
- References
-
- https://github.com/GNOME/libgsf/commit/95a8351a75758cf10b3bf6abae0b6b461f90d9e5
- https://secunia.com/advisories/71201/
- http://www.securityfocus.com/bid/94860
- https://lists.debian.org/debian-lts-announce/2020/04/msg00016.html
- https://secunia.com/secunia_research/2016-17/
- https://security.alpinelinux.org/vuln/CVE-2016-9888
- https://security-tracker.debian.org/tracker/CVE-2016-9888
Affected packages
Alpine:v3.10 / libgsf
Package
- Name
- libgsf
- Purl
- pkg:apk/alpine/libgsf?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.14.41-r0
Affected versions
1.*
1.14.14-r0
1.14.15-r0
1.14.16-r0
1.14.16-r1
1.14.18-r0
1.14.18-r1
1.14.18-r2
1.14.18-r3
1.14.18-r4
1.14.18-r5
1.14.20-r0
1.14.21-r0
1.14.21-r1
1.14.22-r0
1.14.22-r1
1.14.23-r0
1.14.24-r0
1.14.25-r0
1.14.26-r0
1.14.27-r0
1.14.28-r0
1.14.29-r0
1.14.30-r0
1.14.32-r0
1.14.33-r0
1.14.34-r0
1.14.36-r0
1.14.38-r0
1.14.39-r0
1.14.39-r1
1.14.39-r2
1.14.40-r0
Alpine:v3.11 / libgsf
Package
- Name
- libgsf
- Purl
- pkg:apk/alpine/libgsf?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.14.41-r0
Affected versions
1.*
1.14.14-r0
1.14.15-r0
1.14.16-r0
1.14.16-r1
1.14.18-r0
1.14.18-r1
1.14.18-r2
1.14.18-r3
1.14.18-r4
1.14.18-r5
1.14.20-r0
1.14.21-r0
1.14.21-r1
1.14.22-r0
1.14.22-r1
1.14.23-r0
1.14.24-r0
1.14.25-r0
1.14.26-r0
1.14.27-r0
1.14.28-r0
1.14.29-r0
1.14.30-r0
1.14.32-r0
1.14.33-r0
1.14.34-r0
1.14.36-r0
1.14.38-r0
1.14.39-r0
1.14.39-r1
1.14.39-r2
1.14.40-r0
Alpine:v3.2 / libgsf
Package
- Name
- libgsf
- Purl
- pkg:apk/alpine/libgsf?arch=source
Alpine:v3.3 / libgsf
Package
- Name
- libgsf
- Purl
- pkg:apk/alpine/libgsf?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.14.41-r0
Affected versions
1.*
1.14.14-r0
1.14.15-r0
1.14.16-r0
1.14.16-r1
1.14.18-r0
1.14.18-r1
1.14.18-r2
1.14.18-r3
1.14.18-r4
1.14.18-r5
1.14.20-r0
1.14.21-r0
1.14.21-r1
1.14.22-r0
1.14.22-r1
1.14.23-r0
1.14.24-r0
1.14.25-r0
1.14.26-r0
1.14.27-r0
1.14.28-r0
1.14.29-r0
1.14.30-r0
1.14.32-r0
1.14.33-r0
1.14.34-r0
Alpine:v3.4 / libgsf
Package
- Name
- libgsf
- Purl
- pkg:apk/alpine/libgsf?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.14.41-r0
Affected versions
1.*
1.14.14-r0
1.14.15-r0
1.14.16-r0
1.14.16-r1
1.14.18-r0
1.14.18-r1
1.14.18-r2
1.14.18-r3
1.14.18-r4
1.14.18-r5
1.14.20-r0
1.14.21-r0
1.14.21-r1
1.14.22-r0
1.14.22-r1
1.14.23-r0
1.14.24-r0
1.14.25-r0
1.14.26-r0
1.14.27-r0
1.14.28-r0
1.14.29-r0
1.14.30-r0
1.14.32-r0
1.14.33-r0
1.14.34-r0
1.14.36-r0
Alpine:v3.5 / libgsf
Package
- Name
- libgsf
- Purl
- pkg:apk/alpine/libgsf?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.14.41-r0
Affected versions
1.*
1.14.14-r0
1.14.15-r0
1.14.16-r0
1.14.16-r1
1.14.18-r0
1.14.18-r1
1.14.18-r2
1.14.18-r3
1.14.18-r4
1.14.18-r5
1.14.20-r0
1.14.21-r0
1.14.21-r1
1.14.22-r0
1.14.22-r1
1.14.23-r0
1.14.24-r0
1.14.25-r0
1.14.26-r0
1.14.27-r0
1.14.28-r0
1.14.29-r0
1.14.30-r0
1.14.32-r0
1.14.33-r0
1.14.34-r0
1.14.36-r0
1.14.38-r0
1.14.39-r0
1.14.39-r1
1.14.39-r2
1.14.40-r0
Alpine:v3.6 / libgsf
Package
- Name
- libgsf
- Purl
- pkg:apk/alpine/libgsf?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.14.41-r0
Affected versions
1.*
1.14.14-r0
1.14.15-r0
1.14.16-r0
1.14.16-r1
1.14.18-r0
1.14.18-r1
1.14.18-r2
1.14.18-r3
1.14.18-r4
1.14.18-r5
1.14.20-r0
1.14.21-r0
1.14.21-r1
1.14.22-r0
1.14.22-r1
1.14.23-r0
1.14.24-r0
1.14.25-r0
1.14.26-r0
1.14.27-r0
1.14.28-r0
1.14.29-r0
1.14.30-r0
1.14.32-r0
1.14.33-r0
1.14.34-r0
1.14.36-r0
1.14.38-r0
1.14.39-r0
1.14.39-r1
1.14.39-r2
1.14.40-r0
Alpine:v3.7 / libgsf
Package
- Name
- libgsf
- Purl
- pkg:apk/alpine/libgsf?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.14.41-r0
Affected versions
1.*
1.14.14-r0
1.14.15-r0
1.14.16-r0
1.14.16-r1
1.14.18-r0
1.14.18-r1
1.14.18-r2
1.14.18-r3
1.14.18-r4
1.14.18-r5
1.14.20-r0
1.14.21-r0
1.14.21-r1
1.14.22-r0
1.14.22-r1
1.14.23-r0
1.14.24-r0
1.14.25-r0
1.14.26-r0
1.14.27-r0
1.14.28-r0
1.14.29-r0
1.14.30-r0
1.14.32-r0
1.14.33-r0
1.14.34-r0
1.14.36-r0
1.14.38-r0
1.14.39-r0
1.14.39-r1
1.14.39-r2
1.14.40-r0
Alpine:v3.8 / libgsf
Package
- Name
- libgsf
- Purl
- pkg:apk/alpine/libgsf?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.14.41-r0
Affected versions
1.*
1.14.14-r0
1.14.15-r0
1.14.16-r0
1.14.16-r1
1.14.18-r0
1.14.18-r1
1.14.18-r2
1.14.18-r3
1.14.18-r4
1.14.18-r5
1.14.20-r0
1.14.21-r0
1.14.21-r1
1.14.22-r0
1.14.22-r1
1.14.23-r0
1.14.24-r0
1.14.25-r0
1.14.26-r0
1.14.27-r0
1.14.28-r0
1.14.29-r0
1.14.30-r0
1.14.32-r0
1.14.33-r0
1.14.34-r0
1.14.36-r0
1.14.38-r0
1.14.39-r0
1.14.39-r1
1.14.39-r2
1.14.40-r0
Alpine:v3.9 / libgsf
Package
- Name
- libgsf
- Purl
- pkg:apk/alpine/libgsf?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.14.41-r0
Affected versions
1.*
1.14.14-r0
1.14.15-r0
1.14.16-r0
1.14.16-r1
1.14.18-r0
1.14.18-r1
1.14.18-r2
1.14.18-r3
1.14.18-r4
1.14.18-r5
1.14.20-r0
1.14.21-r0
1.14.21-r1
1.14.22-r0
1.14.22-r1
1.14.23-r0
1.14.24-r0
1.14.25-r0
1.14.26-r0
1.14.27-r0
1.14.28-r0
1.14.29-r0
1.14.30-r0
1.14.32-r0
1.14.33-r0
1.14.34-r0
1.14.36-r0
1.14.38-r0
1.14.39-r0
1.14.39-r1
1.14.39-r2
1.14.40-r0
Debian:11 / libgsf
Package
- Name
- libgsf
- Purl
- pkg:deb/debian/libgsf?arch=source
Debian:12 / libgsf
Package
- Name
- libgsf
- Purl
- pkg:deb/debian/libgsf?arch=source
Debian:13 / libgsf
Package
- Name
- libgsf
- Purl
- pkg:deb/debian/libgsf?arch=source
Git / github.com/gnome/libgsf
Affected ranges
- Type
- GIT
- Repo
- https://github.com/gnome/libgsf
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
LIBGSF_1_10_0
LIBGSF_1_10_1
LIBGSF_1_11_0
LIBGSF_1_12_0
LIBGSF_1_12_1
LIBGSF_1_12_2
LIBGSF_1_12_3
LIBGSF_1_13_0
LIBGSF_1_13_1
LIBGSF_1_13_2
LIBGSF_1_13_3
LIBGSF_1_13_99
LIBGSF_1_14_0
LIBGSF_1_14_1
LIBGSF_1_14_10
LIBGSF_1_14_11
LIBGSF_1_14_12
LIBGSF_1_14_13
LIBGSF_1_14_14
LIBGSF_1_14_15
LIBGSF_1_14_16
LIBGSF_1_14_17
LIBGSF_1_14_18
LIBGSF_1_14_19
LIBGSF_1_14_2
LIBGSF_1_14_20
LIBGSF_1_14_21
LIBGSF_1_14_22
LIBGSF_1_14_23
LIBGSF_1_14_24
LIBGSF_1_14_25
LIBGSF_1_14_26
LIBGSF_1_14_27
LIBGSF_1_14_28
LIBGSF_1_14_29
LIBGSF_1_14_3
LIBGSF_1_14_30
LIBGSF_1_14_31
LIBGSF_1_14_32
LIBGSF_1_14_33
LIBGSF_1_14_34
LIBGSF_1_14_35
LIBGSF_1_14_36
LIBGSF_1_14_37
LIBGSF_1_14_38
LIBGSF_1_14_39
LIBGSF_1_14_4
LIBGSF_1_14_40
LIBGSF_1_14_5
LIBGSF_1_14_6
LIBGSF_1_14_7
LIBGSF_1_14_8
LIBGSF_1_14_9
LIBGSF_1_1_0
LIBGSF_1_2_0
LIBGSF_1_3_0
LIBGSF_1_4_0
LIBGSF_1_5_0
LIBGSF_1_6_0
LIBGSF_1_7_2
LIBGSF_1_8_0
LIBGSF_1_8_1
LIBGSF_1_8_2
LIBGSF_1_9_0
LIBGSF_1_9_1