CVE-2018-8754

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2018-8754
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-8754.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-8754
Downstream
Published
2018-03-18T03:29:00.277Z
Modified
2025-11-19T17:34:31.132152Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

The libevtrecordvaluesreadevent() function in libevtrecordvalues.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub

Database specific 
{
    "isDisputed": true
}
References

Affected packages

Git / github.com/libyal/libevt

Affected ranges

Type
GIT
Repo
https://github.com/libyal/libevt
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
9d2cc3ca0a1612a6b271abcacffc2e3eea42925e

Database specific

vanir_signatures

[
    {
        "signature_version": "v1",
        "target": {
            "file": "libevt/libevt_record_values.c",
            "function": "libevt_record_values_read_event"
        },
        "deprecated": false,
        "source": "https://github.com/libyal/libevt/commit/9d2cc3ca0a1612a6b271abcacffc2e3eea42925e",
        "id": "CVE-2018-8754-3f986883",
        "digest": {
            "function_hash": "328806791920141836097821925494888548548",
            "length": 13889.0
        },
        "signature_type": "Function"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "libevt/libevt_libfvalue.h"
        },
        "deprecated": false,
        "source": "https://github.com/libyal/libevt/commit/9d2cc3ca0a1612a6b271abcacffc2e3eea42925e",
        "id": "CVE-2018-8754-5dc3ebe1",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "51112617817381470526898075985939226817",
                "209814071484798656978334869769637931595",
                "334780287653522716604515224877877007187",
                "16164736215274873211489266935237958324"
            ]
        },
        "signature_type": "Line"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "libevt/libevt_record_values.c"
        },
        "deprecated": false,
        "source": "https://github.com/libyal/libevt/commit/9d2cc3ca0a1612a6b271abcacffc2e3eea42925e",
        "id": "CVE-2018-8754-f73e86b8",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "92799791960137351700281435855772586932",
                "145652949093903814047424564394699575725",
                "274370936226901950082546298069264639947",
                "323513851127216338183618064940517795907",
                "228446764750223997884533712165541632311",
                "242499523647841374905494021408114950863",
                "192277143567889843270626008936986180065",
                "55192203568652503674044929168672209345",
                "6933495259059970773535786024409536809",
                "12313788311176403137741611854858197723",
                "255884067066237272731947449442511904746",
                "55192203568652503674044929168672209345",
                "124600398839188082735394436794280254776",
                "108190048222500245008484958610157010837",
                "84683154876325881690931977953289724673",
                "277999817807632283775034675856228038617"
            ]
        },
        "signature_type": "Line"
    }
]