CVE-2016-9841

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2016-9841
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-9841.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2016-9841
Aliases
Downstream
Related
Published
2017-05-23T04:29:01Z
Modified
2025-10-25T11:55:01.185521Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.

References

Affected packages

Git / github.com/madler/zlib

Affected ranges

Type
GIT
Repo
https://github.com/madler/zlib
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
9aaec95e82117c1cb0f9624264c3618fc380cecb

Affected versions

v0.*

v0.71
v0.79
v0.8
v0.9
v0.91
v0.92
v0.93
v0.94
v0.95
v0.99

v1.*

v1.0-pre
v1.0.1
v1.0.2
v1.0.4
v1.0.5
v1.0.7
v1.0.8
v1.0.9
v1.1.0
v1.1.1
v1.1.2
v1.1.3
v1.1.4
v1.2.0
v1.2.0.1
v1.2.0.2
v1.2.0.3
v1.2.0.4
v1.2.0.5
v1.2.0.6
v1.2.0.7
v1.2.0.8
v1.2.1
v1.2.1.1
v1.2.1.2
v1.2.2
v1.2.2.1
v1.2.2.2
v1.2.2.3
v1.2.2.4
v1.2.3
v1.2.3.1
v1.2.3.2
v1.2.3.3
v1.2.3.4
v1.2.3.5
v1.2.3.6
v1.2.3.7
v1.2.3.8
v1.2.3.9
v1.2.4
v1.2.4-pre1
v1.2.4-pre2
v1.2.4.1
v1.2.4.2
v1.2.4.3
v1.2.4.4
v1.2.4.5
v1.2.5
v1.2.5.1
v1.2.5.2
v1.2.5.3
v1.2.6
v1.2.6.1
v1.2.7
v1.2.7.1
v1.2.7.2
v1.2.7.3
v1.2.8

Database specific

vanir_signatures

[
    {
        "id": "CVE-2016-9841-67c1d2cf",
        "source": "https://github.com/madler/zlib/commit/9aaec95e82117c1cb0f9624264c3618fc380cecb",
        "digest": {
            "line_hashes": [
                "78072732683752644015387925034994222207",
                "152217204562056169832124309407939299073",
                "215225918295936704424918487133039937568",
                "105916848088157406623367830967252372900",
                "160347344788684159828158463979696903015",
                "43373212368396179797268006176184707519",
                "184603405977538261864751504079256823382",
                "300158625332067890321432625334982300477",
                "231456712669769731133653513946756254403",
                "76619535432227392067544577638805564880",
                "86478956061661644697224805573734588602",
                "309264260464250844037425145840657077392",
                "42929194529115052760348046443875986836",
                "69092477746976203796181914166585536326",
                "330500421171059488258816703603104184117",
                "39109048859430692111328065213586549476",
                "141918057837261653864758598178289124013",
                "220076265684161871297861930656071873654",
                "232314986378571625308419906069611283002",
                "271261762835987539750125557095311680186",
                "87109922922403481839749730139942871992",
                "123495222477592797725822233535854539932",
                "176140314733410984217923827334674272305",
                "220153160189091466688700385333929749459",
                "338928063149012365420777119484299731809",
                "291002661199329319366599886303090915736",
                "136749551968338550545808172330052836179",
                "312124000686700852887733291669935553370",
                "60415438212528782552969295181943670311",
                "156128004555781001681532607068313777365",
                "95121502532506852848735358562075473053",
                "128214092140692356294035430869947201312",
                "225960269161724208534821870935736004185",
                "132416564511346590982791537042534820632",
                "333045549506452708645355462802558117647",
                "232314986378571625308419906069611283002",
                "271261762835987539750125557095311680186",
                "87109922922403481839749730139942871992",
                "217247340695284845200408995274744903482",
                "274777786069307210412928712498359338970",
                "304397135614779444569141991583228961447",
                "120430037352594325396773076799784644981",
                "199880817059807794915071985179638614896",
                "137949426801562265268064716684471143124",
                "128214092140692356294035430869947201312",
                "216890108406696089672723699978988015568",
                "325344631564606056501479243613347222251",
                "253934916918483800687220905448916387707",
                "324117531668709484021643110752832760201",
                "269848445246898799838539123745173915525",
                "237558994423137954737767269069474710707",
                "334061756316789733532185870324434516532",
                "161803794516738361969090099175277537039",
                "280595309763251253214168943144476014651",
                "2158493544439301373911245954394611157",
                "306339348680549637083011766076218194468",
                "74463155369157102119310394397879202449",
                "237224848044011259924686497689767912971",
                "167095680762181146134547195001451837632",
                "128547645879596891169285315880325464325",
                "317619100846420598911816750531356741758",
                "307640751256381187047569816370424218950",
                "268811912412110267696912500072565844297",
                "73504501321574436146180087853349147562",
                "278297180902125556931793117875411137737",
                "69472112817935067921514582800476370211",
                "114628231497259286507976161332925760276",
                "269182909587005509966059087799845181470",
                "137069313049285435149612788683553497597",
                "13237349173393881884674916736449391574",
                "311229632863293049854145443456278875842",
                "200659021717860052381924849217492440740",
                "236208000950321848468091993292835290741",
                "13237349173393881884674916736449391574",
                "311229632863293049854145443456278875842",
                "316217250228203442530821723093471190301",
                "2544357164870417304895274205782808302",
                "327428738380851875072086640196860844719",
                "38615536945376955112304150955126290690",
                "330323815705367750289174355923513978008",
                "255961283142030936276399941491628317648",
                "311229632863293049854145443456278875842",
                "200659021717860052381924849217492440740",
                "236208000950321848468091993292835290741",
                "13237349173393881884674916736449391574",
                "311229632863293049854145443456278875842",
                "200659021717860052381924849217492440740",
                "236208000950321848468091993292835290741",
                "215270906290005783622426038741650274918",
                "206218689166382866616993724409908720033",
                "267736281923668211909025488814612772203",
                "316402213967916457323416304942297066521",
                "42733897016680122202611280292237541530",
                "47312894792537028295421068653932174889",
                "127719182014782471663968575388626875007",
                "276701571312641104074028786671089426922",
                "223277832707020671107633993992068520850",
                "196889730232970301984699769191684713315",
                "114592134611855788707876554101010302842",
                "333607819032366246440607644387681849345",
                "122288431553698812874327513897280558320",
                "124901143056360359423607317645622031993",
                "172510615937141601851724735425487358199",
                "259495703048052745955879027085558613000",
                "67490943479371108797309281824855679892",
                "19827572648871648518340550292068846984",
                "88501319238230112893621207998237820962",
                "47312894792537028295421068653932174889",
                "209117466490795013100449185623148946921",
                "70352130885428897057911716129260226260",
                "64450438259691921455849036414727510360",
                "138444396159167569224176422330227223751",
                "114592134611855788707876554101010302842",
                "333607819032366246440607644387681849345",
                "122288431553698812874327513897280558320",
                "80829327876727030736841137660224091128",
                "330744135247363802013669152669988602556",
                "294258265210916458753940417463134944243",
                "121403476583364000526180708597213122598",
                "250856604606482844765354843044255597698",
                "228608713377455253737580986856305145706"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "target": {
            "file": "inffast.c"
        },
        "signature_type": "Line",
        "deprecated": false
    }
]

Git / github.com/madler/zlib

Affected ranges

Type
GIT
Repo
https://github.com/nodejs/node
Events
Introduced
cf41627411886000429bde058a6594fb7f6d6d47
Fixed
ab4af087e83d91a46354d765306d3543b1d85423

Affected versions

v10.*

v10.0.0
v10.1.0
v10.10.0
v10.11.0
v10.12.0
v10.2.0
v10.2.1
v10.3.0
v10.4.0
v10.4.1
v10.5.0
v10.6.0
v10.7.0
v10.8.0
v10.9.0

Git / github.com/madler/zlib

Affected ranges

Type
GIT
Repo
https://github.com/katello/katello
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
2bb798cee47b5f92038137e3d7fa7f59f7a11ef6