CVE-2017-6439

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2017-6439
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-6439.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2017-6439
Downstream
Related
Published
2017-03-15T14:59:01Z
Modified
2025-10-15T09:03:11.030745Z
Severity
  • 5.0 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

Heap-based buffer overflow in the parsestringnode function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (out-of-bounds write) via a crafted plist file.

References

Affected packages

Git / github.com/libimobiledevice/libplist

Affected ranges

Type
GIT
Repo
https://github.com/libimobiledevice/libplist
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
32ee5213fe64f1e10ec76c1ee861ee6f233120dd

Affected versions

1.*

1.10
1.11
1.12
1.4
1.5
1.6
1.7
1.8
1.9

Other

libplist_rc1
libplist_rc2

v0.*

v0.10
v0.11
v0.12
v0.13
v0.14
v0.15
v0.16
v0.8
v0.9

v1.*

v1.0
v1.1
v1.2
v1.3

Database specific

vanir_signatures

[
    {
        "signature_version": "v1",
        "id": "CVE-2017-6439-0bbb6660",
        "source": "https://github.com/libimobiledevice/libplist/commit/32ee5213fe64f1e10ec76c1ee861ee6f233120dd",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "156188244364215037406206909115424338022",
                "270507218340556683758157244164346739797",
                "20868631067273560737507354209718126807",
                "175525345297111499699094193283948304698",
                "206416723285238720848439429919813610674",
                "321556157241099152535521135040358802921",
                "134970958873456120558602902800600184366",
                "171331497565318761760904093701766342388",
                "218253539029817303091220703201557535637",
                "113952918008046793986364683747104049857",
                "177284859458370776533673195693784192865",
                "257723415266607699635852978332082352398",
                "212902813417641815937384186460878710237",
                "149108012247647216250900007347531480323",
                "137615385030412692203009528092116378462",
                "38176331951141140346084606126442857442",
                "266293008507233620532781506608571203698",
                "265785711414978656336470236600122034799",
                "112150564396663647390161839431151298554",
                "216526036517117152374988546766010039859",
                "307065625844409316731365061586381054968",
                "191082999308267820452442647988872525754",
                "200365569634871494973026288914124148206"
            ]
        },
        "deprecated": false,
        "target": {
            "file": "src/bplist.c"
        },
        "signature_type": "Line"
    },
    {
        "signature_version": "v1",
        "id": "CVE-2017-6439-70b9e5f4",
        "source": "https://github.com/libimobiledevice/libplist/commit/32ee5213fe64f1e10ec76c1ee861ee6f233120dd",
        "digest": {
            "length": 3627.0,
            "function_hash": "303600261123021975455589058979360069417"
        },
        "deprecated": false,
        "target": {
            "function": "parse_bin_node",
            "file": "src/bplist.c"
        },
        "signature_type": "Function"
    }
]