CVE-2011-2516

Apache XML Security for C++ 1.6.0 - Denial of Service via Large RSA Key Buffer Overflow

Title source: llm
STIX 2.1

Description

Off-by-one error in the XML signature feature in Apache XML Security for C++ 1.6.0, as used in Shibboleth before 2.4.3 and possibly other products, allows remote attackers to cause a denial of service (crash) via a signature using a large RSA key, which triggers a buffer overflow.

References (16)

Core 16
Core References
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2011/dsa-2277
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/45491
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/45151
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/518756/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/68420
Vendor Advisory x_refsource_confirm
http://santuario.apache.org/secadv/CVE-2011-2516.txt
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/063159.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/45198
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/45191
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1025755
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/063229.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/48611

Scores

EPSS 0.0772
EPSS Percentile 93.9%

Details

CWE
CWE-189
Status published
Products (16)
apache/xml_security_for_c\+\+ 1.6.0
shibboleth/shibboleth-sp 1.3.1
shibboleth/shibboleth-sp 1.3.2
shibboleth/shibboleth-sp 1.3.3
shibboleth/shibboleth-sp 1.3.4
shibboleth/shibboleth-sp 1.3.5
shibboleth/shibboleth-sp 1.3f
shibboleth/shibboleth-sp 2.0
shibboleth/shibboleth-sp 2.1
shibboleth/shibboleth-sp 2.2
... and 6 more
Published Jul 11, 2011
Tracked Since Feb 18, 2026