UBUNTU-CVE-2023-34453

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/CVE-2023-34453
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-34453.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2023-34453
Related
Published
2023-06-15T17:15:00Z
Modified
2024-10-15T14:11:35Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions prior to 1.1.10.1, causing a fatal error. The function shuffle(int[] input) in the file BitShuffle.java receives an array of integers and applies a bit shuffle on it. It does so by multiplying the length by 4 and passing it to the natively compiled shuffle function. Since the length is not tested, the multiplication by four can cause an integer overflow and become a smaller value than the true size, or even zero or negative. In the case of a negative value, a java.lang.NegativeArraySizeException exception will raise, which can crash the program. In a case of a value that is zero or too small, the code that afterwards references the shuffled array will assume a bigger size of the array, which might cause exceptions such as java.lang.ArrayIndexOutOfBoundsException. The same issue exists also when using the shuffle functions that receive a double, float, long and short, each using a different multiplier that may cause the same issue. Version 1.1.10.1 contains a patch for this vulnerability.

References

Affected packages

Ubuntu:Pro:14.04:LTS / snappy-java

Package

Name
snappy-java
Purl
pkg:deb/ubuntu/snappy-java?arch=src?distro=trusty/esm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0.4.1~dfsg-1

Ecosystem specific 

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:16.04:LTS / snappy-java

Package

Name
snappy-java
Purl
pkg:deb/ubuntu/snappy-java?arch=src?distro=esm-apps/xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.1.7-2
1.1.2-1
1.1.2.1-2

Ecosystem specific 

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / snappy-java

Package

Name
snappy-java
Purl
pkg:deb/ubuntu/snappy-java?arch=src?distro=esm-apps/bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.4-1

Ecosystem specific 

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / snappy-java

Package

Name
snappy-java
Purl
pkg:deb/ubuntu/snappy-java?arch=src?distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.7.2-1
1.1.7.3-1
1.1.7.3-1build1

Ecosystem specific 

{
    "ubuntu_priority": "medium"
}

Ubuntu:22.04:LTS / snappy-java

Package

Name
snappy-java
Purl
pkg:deb/ubuntu/snappy-java?arch=src?distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.8.3-1

Ecosystem specific 

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.10 / snappy-java

Package

Name
snappy-java
Purl
pkg:deb/ubuntu/snappy-java?arch=src?distro=oracular

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.10.5-1build1
1.1.10.5-2

Ecosystem specific 

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / snappy-java

Package

Name
snappy-java
Purl
pkg:deb/ubuntu/snappy-java?arch=src?distro=noble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.8.3-1
1.1.10.5-1
1.1.10.5-1build1

Ecosystem specific 

{
    "ubuntu_priority": "medium"
}