NVD脆弱性詳細

CVE-2013-6630

概要	The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48 and other products, does not set all elements of a certain Huffman value array during the reading of segments that follow Define Huffman Table (DHT) JPEG markers, which allows remote attackers to obtain sensitive information from uninitialized memory locations via a crafted JPEG image.
公表日	2013年11月19日13:50
登録日	2021年1月26日15:48
最終更新日	2024年11月21日10:59

CVSS2.0 : MEDIUM
スコア	5.0
ベクター	AV:N/AC:L/Au:N/C:P/I:N/A:N
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	低
完全性への影響(I)	なし
可用性への影響(A)	なし
全ての特権を取得	いいえ
ユーザー権限を取得	いいえ
その他の権限を取得	いいえ
ユーザー操作が必要	いいえ

影響を受けるソフトウェアの構成

構成1	以上	以下	より上	未満
cpe:2.3:a:google:chrome:31.0.1650.22:::::::*
cpe:2.3:a:google:chrome:31.0.1650.45:::::::*
cpe:2.3:a:google:chrome:31.0.1650.11:::::::*
cpe:2.3:a:google:chrome:31.0.1650.33:::::::*
cpe:2.3:a:google:chrome:31.0.1650.32:::::::*
cpe:2.3:a:google:chrome:31.0.1650.31:::::::*
cpe:2.3:a:google:chrome:31.0.1650.28:::::::*
cpe:2.3:a:google:chrome:31.0.1650.26:::::::*
cpe:2.3:a:google:chrome:31.0.1650.4:::::::*
cpe:2.3:a:google:chrome:31.0.1650.2:::::::*
cpe:2.3:a:google:chrome:31.0.1650.16:::::::*
cpe:2.3:a:google:chrome:31.0.1650.39:::::::*
cpe:2.3:a:google:chrome:31.0.1650.41:::::::*
cpe:2.3:a:google:chrome:31.0.1650.38:::::::*
cpe:2.3:a:google:chrome:31.0.1650.5:::::::*
cpe:2.3:a:google:chrome::::::::		31.0.1650.47
cpe:2.3:a:google:chrome:31.0.1650.36:::::::*
cpe:2.3:a:google:chrome:31.0.1650.43:::::::*
cpe:2.3:a:google:chrome:31.0.1650.34:::::::*
cpe:2.3:a:google:chrome:31.0.1650.13:::::::*
cpe:2.3:a:google:chrome:31.0.1650.44:::::::*
cpe:2.3:a:google:chrome:31.0.1650.23:::::::*
cpe:2.3:a:google:chrome:31.0.1650.17:::::::*
cpe:2.3:a:google:chrome:31.0.1650.19:::::::*
cpe:2.3:a:google:chrome:31.0.1650.20:::::::*
cpe:2.3:a:google:chrome:31.0.1650.14:::::::*
cpe:2.3:a:google:chrome:31.0.1650.10:::::::*
cpe:2.3:a:google:chrome:31.0.1650.46:::::::*
cpe:2.3:a:google:chrome:31.0.1650.7:::::::*
cpe:2.3:a:google:chrome:31.0.1650.37:::::::*
cpe:2.3:a:google:chrome:31.0.1650.29:::::::*
cpe:2.3:a:google:chrome:31.0.1650.8:::::::*
cpe:2.3:a:google:chrome:31.0.1650.25:::::::*
cpe:2.3:a:google:chrome:31.0.1650.9:::::::*
cpe:2.3:a:google:chrome:31.0.1650.3:::::::*
cpe:2.3:a:google:chrome:31.0.1650.12:::::::*
cpe:2.3:a:google:chrome:31.0.1650.15:::::::*
cpe:2.3:a:google:chrome:31.0.1650.30:::::::*
cpe:2.3:a:google:chrome:31.0.1650.35:::::::*
cpe:2.3:a:google:chrome:31.0.1650.27:::::::*
cpe:2.3:a:google:chrome:31.0.1650.42:::::::*
cpe:2.3:a:google:chrome:31.0.1650.6:::::::*
cpe:2.3:a:google:chrome:31.0.1650.0:::::::*
cpe:2.3:a:google:chrome:31.0.1650.18:::::::*

関連情報、対策とツール

No	URL	タグ
1	http://advisories.mageia.org/MGASA-2013-0333.html
2	http://advisories.mageia.org/MGASA-2013-0333.html
3	http://archives.neohapsis.com/archives/fulldisclosure/2013-11/0080.html
4	http://archives.neohapsis.com/archives/fulldisclosure/2013-11/0080.html
5	http://git.chromium.org/gitweb/?p=chromium/deps/libjpeg_turbo.git%3Ba=commit%3Bh=32cab49bd4cb1ce069a435fd75f9439c34ddc6f8
6	http://git.chromium.org/gitweb/?p=chromium/deps/libjpeg_turbo.git%3Ba=commit%3Bh=32cab49bd4cb1ce069a435fd75f9439c34ddc6f8
7	http://googlechromereleases.blogspot.com/2013/11/stable-channel-update.html	Vendor Advisory
8	http://googlechromereleases.blogspot.com/2013/11/stable-channel-update.html	Vendor Advisory
9	http://lists.fedoraproject.org/pipermail/package-announce/2013-December/123437.html
10	http://lists.fedoraproject.org/pipermail/package-announce/2013-December/123437.html
11	http://lists.fedoraproject.org/pipermail/package-announce/2013-December/124108.html
12	http://lists.fedoraproject.org/pipermail/package-announce/2013-December/124108.html
13	http://lists.fedoraproject.org/pipermail/package-announce/2013-December/124257.html
14	http://lists.fedoraproject.org/pipermail/package-announce/2013-December/124257.html
15	http://lists.fedoraproject.org/pipermail/package-announce/2014-January/125470.html
16	http://lists.fedoraproject.org/pipermail/package-announce/2014-January/125470.html
17	http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00025.html
18	http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00025.html
19	http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00026.html
20	http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00026.html
21	http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00002.html
22	http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00002.html
23	http://lists.opensuse.org/opensuse-updates/2013-12/msg00085.html
24	http://lists.opensuse.org/opensuse-updates/2013-12/msg00085.html
25	http://lists.opensuse.org/opensuse-updates/2013-12/msg00086.html
26	http://lists.opensuse.org/opensuse-updates/2013-12/msg00086.html
27	http://lists.opensuse.org/opensuse-updates/2013-12/msg00087.html
28	http://lists.opensuse.org/opensuse-updates/2013-12/msg00087.html
29	http://lists.opensuse.org/opensuse-updates/2013-12/msg00119.html
30	http://lists.opensuse.org/opensuse-updates/2013-12/msg00119.html
31	http://lists.opensuse.org/opensuse-updates/2013-12/msg00120.html
32	http://lists.opensuse.org/opensuse-updates/2013-12/msg00120.html
33	http://lists.opensuse.org/opensuse-updates/2013-12/msg00121.html
34	http://lists.opensuse.org/opensuse-updates/2013-12/msg00121.html
35	http://lists.opensuse.org/opensuse-updates/2014-01/msg00002.html
36	http://lists.opensuse.org/opensuse-updates/2014-01/msg00002.html
37	http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html
38	http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html
39	http://rhn.redhat.com/errata/RHSA-2013-1803.html
40	http://rhn.redhat.com/errata/RHSA-2013-1803.html
41	http://secunia.com/advisories/56175
42	http://secunia.com/advisories/56175
43	http://www.debian.org/security/2013/dsa-2799
44	http://www.debian.org/security/2013/dsa-2799
45	http://www.mandriva.com/security/advisories?name=MDVSA-2013:273
46	http://www.mandriva.com/security/advisories?name=MDVSA-2013:273
47	http://www.mozilla.org/security/announce/2013/mfsa2013-116.html
48	http://www.mozilla.org/security/announce/2013/mfsa2013-116.html
49	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
50	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
51	http://www.securitytracker.com/id/1029470
52	http://www.securitytracker.com/id/1029470
53	http://www.securitytracker.com/id/1029476
54	http://www.securitytracker.com/id/1029476
55	http://www.ubuntu.com/usn/USN-2052-1
56	http://www.ubuntu.com/usn/USN-2052-1
57	http://www.ubuntu.com/usn/USN-2053-1
58	http://www.ubuntu.com/usn/USN-2053-1
59	http://www.ubuntu.com/usn/USN-2060-1
60	http://www.ubuntu.com/usn/USN-2060-1
61	https://bugzilla.mozilla.org/show_bug.cgi?id=891693
62	https://bugzilla.mozilla.org/show_bug.cgi?id=891693
63	https://code.google.com/p/chromium/issues/detail?id=299835
64	https://code.google.com/p/chromium/issues/detail?id=299835
65	https://security.gentoo.org/glsa/201606-03
66	https://security.gentoo.org/glsa/201606-03

共通脆弱性一覧

No	CWE	名前	URL
1	CWE-189	数値処理の問題	https://cwe.mitre.org/data/definitions/189.html

JVN脆弱性情報

Google Chrome などで使用される libjpeg-turbo の jdmarker.c における重要な情報を取得される脆弱性

タイトル	Google Chrome などで使用される libjpeg-turbo の jdmarker.c における重要な情報を取得される脆弱性
概要	Google Chrome およびその他の製品で使用される libjpeg-turbo の jdmarker.c 内の get_dht 関数は、Define Huffman Table (DHT) JPEG マーカーに従うセグメントの読み取り中に、特定のハフマン符号の値の配列のすべての要素を設定しないため、初期化されていないメモリ領域から重要な情報を取得される脆弱性が存在します。
想定される影響	第三者により、巧妙に細工された JPEG 画像を介して、初期化されていないメモリ領域から重要な情報を取得される可能性があります。
対策	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
公表日	2013年11月12日0:00
登録日	2013年11月20日17:00
最終更新日	2015年8月3日17:58

影響を受けるシステム

Mozilla Foundation

Mozilla Firefox 26 未満

Mozilla Firefox ESR 24.2 未満

Mozilla SeaMonkey 2.23 未満

Mozilla Thunderbird 24.2 未満

Google

Google Chrome 31.0.1650.48 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	名前	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2013-6630	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6630
National Vulnerability Database (NVD)
2	CVE-2013-6630	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6630

CWE (共通脆弱性タイプ一覧)

No	名前	URL
JVNDB
1	CWE-189	https://jvndb.jvn.jp/ja/cwe/CWE-189.html

ベンダー情報

No	名前	URL
Debian Security Advisory
1	DSA-2799	http://www.debian.org/security/2013/dsa-2799
Fedora Update Notification
2	FEDORA-2013-23127	http://lists.fedoraproject.org/pipermail/package-announce/2013-December/123437.html
Google
3	Google Chrome	http://www.google.co.jp/chrome/intl/ja/landing_ff_yt.html?hl=ja&hl=ja
4	Stable Channel Update	http://googlechromereleases.blogspot.jp/2013/11/stable-channel-update.html
5	Zero unused DHT huffman values at creation time	http://git.chromium.org/gitweb/?p=chromium/deps/libjpeg_turbo.git;a=commit;h=32cab49bd4cb1ce069a435fd75f9439c34ddc6f8
Mozilla Foundation Security Advisory
6	MFSA2013-116	http://www.mozilla.org/security/announce/2013/mfsa2013-116.html
opensuse-security-announce
7	openSUSE-SU-2013:1776	http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00025.html
8	openSUSE-SU-2013:1777	http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00026.html
9	openSUSE-SU-2013:1861	http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00002.html
Red Hat Bugzilla
10	Bug 1031749	https://bugzilla.redhat.com/show_bug.cgi?id=1031749
Red Hat Security Advisory
11	RHSA-2013:1803	http://rhn.redhat.com/errata/RHSA-2013-1803.html
Ubuntu Security Notice
12	USN-2052-1	http://www.ubuntu.com/usn/USN-2052-1
13	USN-2053-1	http://www.ubuntu.com/usn/USN-2052-1

その他

No	名前	URL
関連文書
1	MGASA-2013-0333	http://advisories.mageia.org/MGASA-2013-0333.html

変更履歴

No	変更内容	変更日
0	[2013年11月20日] 掲載 [2013年12月26日] 影響を受けるシステム：Mozilla Foundation (MFSA2013-116) の情報を追加ベンダ情報：Debian (DSA-2799) を追加ベンダ情報：Fedora Project (FEDORA-2013-23127) を追加ベンダ情報：Mozilla Foundation (MFSA2013-116) を追加ベンダ情報：Novell (openSUSE-SU-2013:1776) ベンダ情報：Novell (openSUSE-SU-2013:1777) ベンダ情報：Novell (openSUSE-SU-2013:1861) ベンダ情報：Ubuntu (USN-2052-1) を追加ベンダ情報：Ubuntu (USN-2053-1) を追加ベンダ情報：レッドハット (Bug 1031734) を追加ベンダ情報：レッドハット (RHSA-2013:1803) を追加 [2015年08月03日] 参考情報：関連文書 (MGASA-2013-0333) を追加	2018年2月17日10:37

構成1	以上	以下	より上	未満
cpe:2.3:a:google:chrome:31.0.1650.22:::::::*
cpe:2.3:a:google:chrome:31.0.1650.45:::::::*
cpe:2.3:a:google:chrome:31.0.1650.11:::::::*
cpe:2.3:a:google:chrome:31.0.1650.33:::::::*
cpe:2.3:a:google:chrome:31.0.1650.32:::::::*
cpe:2.3:a:google:chrome:31.0.1650.31:::::::*
cpe:2.3:a:google:chrome:31.0.1650.28:::::::*
cpe:2.3:a:google:chrome:31.0.1650.26:::::::*
cpe:2.3:a:google:chrome:31.0.1650.4:::::::*
cpe:2.3:a:google:chrome:31.0.1650.2:::::::*
cpe:2.3:a:google:chrome:31.0.1650.16:::::::*
cpe:2.3:a:google:chrome:31.0.1650.39:::::::*
cpe:2.3:a:google:chrome:31.0.1650.41:::::::*
cpe:2.3:a:google:chrome:31.0.1650.38:::::::*
cpe:2.3:a:google:chrome:31.0.1650.5:::::::*
cpe:2.3:a:google:chrome::::::::		31.0.1650.47
cpe:2.3:a:google:chrome:31.0.1650.36:::::::*
cpe:2.3:a:google:chrome:31.0.1650.43:::::::*
cpe:2.3:a:google:chrome:31.0.1650.34:::::::*
cpe:2.3:a:google:chrome:31.0.1650.13:::::::*
cpe:2.3:a:google:chrome:31.0.1650.44:::::::*
cpe:2.3:a:google:chrome:31.0.1650.23:::::::*
cpe:2.3:a:google:chrome:31.0.1650.17:::::::*
cpe:2.3:a:google:chrome:31.0.1650.19:::::::*
cpe:2.3:a:google:chrome:31.0.1650.20:::::::*
cpe:2.3:a:google:chrome:31.0.1650.14:::::::*
cpe:2.3:a:google:chrome:31.0.1650.10:::::::*
cpe:2.3:a:google:chrome:31.0.1650.46:::::::*
cpe:2.3:a:google:chrome:31.0.1650.7:::::::*
cpe:2.3:a:google:chrome:31.0.1650.37:::::::*
cpe:2.3:a:google:chrome:31.0.1650.29:::::::*
cpe:2.3:a:google:chrome:31.0.1650.8:::::::*
cpe:2.3:a:google:chrome:31.0.1650.25:::::::*
cpe:2.3:a:google:chrome:31.0.1650.9:::::::*
cpe:2.3:a:google:chrome:31.0.1650.3:::::::*
cpe:2.3:a:google:chrome:31.0.1650.12:::::::*
cpe:2.3:a:google:chrome:31.0.1650.15:::::::*
cpe:2.3:a:google:chrome:31.0.1650.30:::::::*
cpe:2.3:a:google:chrome:31.0.1650.35:::::::*
cpe:2.3:a:google:chrome:31.0.1650.27:::::::*
cpe:2.3:a:google:chrome:31.0.1650.42:::::::*
cpe:2.3:a:google:chrome:31.0.1650.6:::::::*
cpe:2.3:a:google:chrome:31.0.1650.0:::::::*
cpe:2.3:a:google:chrome:31.0.1650.18:::::::*