CVE-2016-8859 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2016-8859 Interim 1 15 2025-04-22T23:45:29Z current 2021-05-30T13:47:08Z 2025-04-22T23:45:29Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2016-8859 Multiple integer overflows in the TRE library and musl libc allow attackers to cause memory corruption via a large number of (1) states or (2) tags, which triggers an out-of-bounds write. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2018-December/004937.html E-Mail link for SUSE-SU-2018:4020-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4KLMQUDJXG7ORWF7M42NKLDUJSKHAUTS/ E-Mail link for openSUSE-SU-2020:0554-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE CaaS Platform 3.0 openSUSE Leap 15.1 openSUSE Tumbleweed agrep-0.8.0_git201402282055-5.8 caasp-container-manifests-3.0.0+git_r291_33f7b2d-3.6.3 cri-o-1.10.6-4.8.5 cri-o-1.17.1-lp151.2.2 cri-o-kubeadm-criconfig-1.17.1-lp151.2.2 cri-tools-1.0.0beta2-3.3.3 cri-tools-1.18.0-lp151.2.1 go1.14-1.14-lp151.6.1 go1.14-doc-1.14-lp151.6.1 go1.14-race-1.14-lp151.6.1 kubernetes-apiserver-1.18.0-lp151.5.1 kubernetes-apiserver-1.22.2-21.2 kubernetes-apiserver-minus1-1.21.5-21.2 kubernetes-client-1.10.11-4.8.2 kubernetes-client-1.18.0-lp151.5.1 kubernetes-client-1.22.2-21.2 kubernetes-common-1.10.11-4.8.2 kubernetes-controller-manager-1.18.0-lp151.5.1 kubernetes-controller-manager-1.22.2-21.2 kubernetes-controller-manager-minus1-1.21.5-21.2 kubernetes-coredns-1.8.4-21.2 kubernetes-coredns-minus1-1.8.0-21.2 kubernetes-etcd-3.5.0-21.2 kubernetes-etcd-minus1-3.4.13-21.2 kubernetes-kubeadm-1.18.0-lp151.5.1 kubernetes-kubeadm-1.22.2-21.2 kubernetes-kubelet-1.10.11-4.8.2 kubernetes-kubelet-1.22.2-21.2 kubernetes-kubelet-common-1.18.0-lp151.5.1 kubernetes-kubelet1.17-1.18.0-lp151.5.1 kubernetes-kubelet1.18-1.18.0-lp151.5.1 kubernetes-master-1.10.11-4.8.2 kubernetes-master-1.18.0-lp151.5.1 kubernetes-node-1.10.11-4.8.2 kubernetes-node-1.18.0-lp151.5.1 kubernetes-proxy-1.18.0-lp151.5.1 kubernetes-proxy-1.22.2-21.2 kubernetes-proxy-minus1-1.21.5-21.2 kubernetes-salt-3.0.0+git_r888_7af7095-3.33.2 kubernetes-scheduler-1.18.0-lp151.5.1 kubernetes-scheduler-1.22.2-21.2 kubernetes-scheduler-minus1-1.21.5-21.2 libtre5-0.8.0_git201402282055-5.8 tre-0.8.0_git201402282055-5.8 tre-devel-0.8.0_git201402282055-5.8 tre-lang-0.8.0_git201402282055-5.8 caasp-container-manifests-3.0.0+git_r291_33f7b2d-3.6.3 as a component of SUSE CaaS Platform 3.0 cri-o-1.10.6-4.8.5 as a component of SUSE CaaS Platform 3.0 cri-tools-1.0.0beta2-3.3.3 as a component of SUSE CaaS Platform 3.0 kubernetes-client-1.10.11-4.8.2 as a component of SUSE CaaS Platform 3.0 kubernetes-common-1.10.11-4.8.2 as a component of SUSE CaaS Platform 3.0 kubernetes-kubelet-1.10.11-4.8.2 as a component of SUSE CaaS Platform 3.0 kubernetes-master-1.10.11-4.8.2 as a component of SUSE CaaS Platform 3.0 kubernetes-node-1.10.11-4.8.2 as a component of SUSE CaaS Platform 3.0 kubernetes-salt-3.0.0+git_r888_7af7095-3.33.2 as a component of SUSE CaaS Platform 3.0 cri-o-1.17.1-lp151.2.2 as a component of openSUSE Leap 15.1 cri-o-kubeadm-criconfig-1.17.1-lp151.2.2 as a component of openSUSE Leap 15.1 cri-tools-1.18.0-lp151.2.1 as a component of openSUSE Leap 15.1 go1.14-1.14-lp151.6.1 as a component of openSUSE Leap 15.1 go1.14-doc-1.14-lp151.6.1 as a component of openSUSE Leap 15.1 go1.14-race-1.14-lp151.6.1 as a component of openSUSE Leap 15.1 kubernetes-apiserver-1.18.0-lp151.5.1 as a component of openSUSE Leap 15.1 kubernetes-client-1.18.0-lp151.5.1 as a component of openSUSE Leap 15.1 kubernetes-controller-manager-1.18.0-lp151.5.1 as a component of openSUSE Leap 15.1 kubernetes-kubeadm-1.18.0-lp151.5.1 as a component of openSUSE Leap 15.1 kubernetes-kubelet-common-1.18.0-lp151.5.1 as a component of openSUSE Leap 15.1 kubernetes-kubelet1.17-1.18.0-lp151.5.1 as a component of openSUSE Leap 15.1 kubernetes-kubelet1.18-1.18.0-lp151.5.1 as a component of openSUSE Leap 15.1 kubernetes-master-1.18.0-lp151.5.1 as a component of openSUSE Leap 15.1 kubernetes-node-1.18.0-lp151.5.1 as a component of openSUSE Leap 15.1 kubernetes-proxy-1.18.0-lp151.5.1 as a component of openSUSE Leap 15.1 kubernetes-scheduler-1.18.0-lp151.5.1 as a component of openSUSE Leap 15.1 agrep-0.8.0_git201402282055-5.8 as a component of openSUSE Tumbleweed kubernetes-apiserver-1.22.2-21.2 as a component of openSUSE Tumbleweed kubernetes-apiserver-minus1-1.21.5-21.2 as a component of openSUSE Tumbleweed kubernetes-client-1.22.2-21.2 as a component of openSUSE Tumbleweed kubernetes-controller-manager-1.22.2-21.2 as a component of openSUSE Tumbleweed kubernetes-controller-manager-minus1-1.21.5-21.2 as a component of openSUSE Tumbleweed kubernetes-coredns-1.8.4-21.2 as a component of openSUSE Tumbleweed kubernetes-coredns-minus1-1.8.0-21.2 as a component of openSUSE Tumbleweed kubernetes-etcd-3.5.0-21.2 as a component of openSUSE Tumbleweed kubernetes-etcd-minus1-3.4.13-21.2 as a component of openSUSE Tumbleweed kubernetes-kubeadm-1.22.2-21.2 as a component of openSUSE Tumbleweed kubernetes-kubelet-1.22.2-21.2 as a component of openSUSE Tumbleweed kubernetes-proxy-1.22.2-21.2 as a component of openSUSE Tumbleweed kubernetes-proxy-minus1-1.21.5-21.2 as a component of openSUSE Tumbleweed kubernetes-scheduler-1.22.2-21.2 as a component of openSUSE Tumbleweed kubernetes-scheduler-minus1-1.21.5-21.2 as a component of openSUSE Tumbleweed libtre5-0.8.0_git201402282055-5.8 as a component of openSUSE Tumbleweed tre-0.8.0_git201402282055-5.8 as a component of openSUSE Tumbleweed tre-devel-0.8.0_git201402282055-5.8 as a component of openSUSE Tumbleweed tre-lang-0.8.0_git201402282055-5.8 as a component of openSUSE Tumbleweed Multiple integer overflows in the TRE library and musl libc allow attackers to cause memory corruption via a large number of (1) states or (2) tags, which triggers an out-of-bounds write. CVE-2016-8859 SUSE CaaS Platform 3.0:caasp-container-manifests-3.0.0+git_r291_33f7b2d-3.6.3 SUSE CaaS Platform 3.0:cri-o-1.10.6-4.8.5 SUSE CaaS Platform 3.0:cri-tools-1.0.0beta2-3.3.3 SUSE CaaS Platform 3.0:kubernetes-client-1.10.11-4.8.2 SUSE CaaS Platform 3.0:kubernetes-common-1.10.11-4.8.2 SUSE CaaS Platform 3.0:kubernetes-kubelet-1.10.11-4.8.2 SUSE CaaS Platform 3.0:kubernetes-master-1.10.11-4.8.2 SUSE CaaS Platform 3.0:kubernetes-node-1.10.11-4.8.2 SUSE CaaS Platform 3.0:kubernetes-salt-3.0.0+git_r888_7af7095-3.33.2 openSUSE Leap 15.1:cri-o-1.17.1-lp151.2.2 openSUSE Leap 15.1:cri-o-kubeadm-criconfig-1.17.1-lp151.2.2 openSUSE Leap 15.1:cri-tools-1.18.0-lp151.2.1 openSUSE Leap 15.1:go1.14-1.14-lp151.6.1 openSUSE Leap 15.1:go1.14-doc-1.14-lp151.6.1 openSUSE Leap 15.1:go1.14-race-1.14-lp151.6.1 openSUSE Leap 15.1:kubernetes-apiserver-1.18.0-lp151.5.1 openSUSE Leap 15.1:kubernetes-client-1.18.0-lp151.5.1 openSUSE Leap 15.1:kubernetes-controller-manager-1.18.0-lp151.5.1 openSUSE Leap 15.1:kubernetes-kubeadm-1.18.0-lp151.5.1 openSUSE Leap 15.1:kubernetes-kubelet-common-1.18.0-lp151.5.1 openSUSE Leap 15.1:kubernetes-kubelet1.17-1.18.0-lp151.5.1 openSUSE Leap 15.1:kubernetes-kubelet1.18-1.18.0-lp151.5.1 openSUSE Leap 15.1:kubernetes-master-1.18.0-lp151.5.1 openSUSE Leap 15.1:kubernetes-node-1.18.0-lp151.5.1 openSUSE Leap 15.1:kubernetes-proxy-1.18.0-lp151.5.1 openSUSE Leap 15.1:kubernetes-scheduler-1.18.0-lp151.5.1 openSUSE Tumbleweed:agrep-0.8.0_git201402282055-5.8 openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2 openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2 openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2 openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2 openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2 openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2 openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2 openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2 openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2 openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2 openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2 openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2 openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2 openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2 openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2 openSUSE Tumbleweed:libtre5-0.8.0_git201402282055-5.8 openSUSE Tumbleweed:tre-0.8.0_git201402282055-5.8 openSUSE Tumbleweed:tre-devel-0.8.0_git201402282055-5.8 openSUSE Tumbleweed:tre-lang-0.8.0_git201402282055-5.8 critical 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H