Published: 29/09/2022 Updated: 01/03/2023

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 0

An exploitable heap overflow vulnerability exists in the Psych::Emitter start_document function of Ruby. In Psych::Emitter start_document function heap buffer "head" allocation is made based on tags array length. Specially constructed object passed as element of tags array can increase this array size after mentioned allocation and cause heap overflow.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ruby-lang ruby 2.3.0
ruby-lang ruby 2.2.2
debian debian linux 8.0

DescriptionThe MITRE CVE dictionary describes this issue as: An exploitable heap overflow vulnerability exists in the Psych::Emitter start_document function of Ruby In Psych::Emitter start_document function heap buffer &quot;head&quot; allocation is made based on tags array length Specially constructed object passed as element of tags arr ...

CVE-2016-2338 Use-after-free nday full exploit

CVE-2016-2338-nday CVE-2016-2338 nday full exploit

CWE-787 https://lists.debian.org/debian-lts-announce/2020/03/msg00032.html http://www.talosintelligence.com/reports/TALOS-2016-0032/https://security.netapp.com/advisory/ntap-20221228-0005/https://nvd.nist.gov https://github.com/SpiralBL0CK/CVE-2016-2338-nday https://access.redhat.com/security/cve/cve-2016-2338

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2016-2338

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect