CVE-2011-2516
Apache XML Security for C++ 1.6.0 - Denial of Service via Large RSA Key Buffer Overflow
Title source: llmDescription
Off-by-one error in the XML signature feature in Apache XML Security for C++ 1.6.0, as used in Shibboleth before 2.4.3 and possibly other products, allows remote attackers to cause a denial of service (crash) via a signature using a large RSA key, which triggers a buffer overflow.
References (16)
Core 16
Core References
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2011/dsa-2277
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/45491
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/45151
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/518756/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/68420
Exploit x_refsource_confirm
https://issues.apache.org/jira/browse/SANTUARIO-271
Vendor Advisory x_refsource_confirm
http://santuario.apache.org/secadv/CVE-2011-2516.txt
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/063159.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/45198
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/45191
Vendor Advisory x_refsource_confirm
http://shibboleth.internet2.edu/secadv/secadv_20110706.txt
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1025755
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/063229.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/48611
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/680e6938b6412e26d5446054fd31de2011d33af11786b989127d1cc3%40%3Ccommits.santuario.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r1c07a561426ec5579073046ad7f4207cdcef452bb3100abaf908e0cd%40%3Ccommits.santuario.apache.org%3E
Scores
EPSS
0.0772
EPSS Percentile
93.9%
Details
CWE
CWE-189
Status
published
Products (16)
apache/xml_security_for_c\+\+
1.6.0
shibboleth/shibboleth-sp
1.3.1
shibboleth/shibboleth-sp
1.3.2
shibboleth/shibboleth-sp
1.3.3
shibboleth/shibboleth-sp
1.3.4
shibboleth/shibboleth-sp
1.3.5
shibboleth/shibboleth-sp
1.3f
shibboleth/shibboleth-sp
2.0
shibboleth/shibboleth-sp
2.1
shibboleth/shibboleth-sp
2.2
... and 6 more
Published
Jul 11, 2011
Tracked Since
Feb 18, 2026