{"id":"CVE-2016-10210","details":"libyara/lexer.l in YARA 3.5.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted rule that is mishandled in the yy_get_next_buffer function.","modified":"2026-04-11T03:36:58.513606Z","published":"2017-04-03T05:59:00.287Z","related":["openSUSE-SU-2024:11530-1"],"references":[{"type":"WEB","url":"http://www.securityfocus.com/bid/98077"},{"type":"FIX","url":"https://github.com/VirusTotal/yara/commit/3119b232c9c453c98d8fa8b6ae4e37ba18117cd4"},{"type":"FIX","url":"https://github.com/VirusTotal/yara/issues/576"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/virustotal/yara","events":[{"introduced":"0"},{"last_affected":"c8571453e39913267e7042096d03bee040409b9a"},{"fixed":"3119b232c9c453c98d8fa8b6ae4e37ba18117cd4"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"3.5.0"}]}}],"versions":["v2.0.0","v2.1.0","v3.0.0","v3.1.0","v3.2.0","v3.3.0","v3.4.0","v3.5.0"],"database_specific":{"vanir_signatures":[{"digest":{"line_hashes":["232858766241170923342197156957593741983","89403057466145677414462041051848350233","133370254723182019494033209478622675323","273058502394695062944171708278782574114"],"threshold":0.9},"source":"https://github.com/virustotal/yara/commit/3119b232c9c453c98d8fa8b6ae4e37ba18117cd4","signature_version":"v1","target":{"file":"tests/test-rules.c"},"id":"CVE-2016-10210-330229ae","deprecated":false,"signature_type":"Line"},{"digest":{"function_hash":"319062187590262510384857521465553544922","length":379},"source":"https://github.com/virustotal/yara/commit/3119b232c9c453c98d8fa8b6ae4e37ba18117cd4","signature_version":"v1","target":{"function":"read_escaped_char","file":"libyara/re_lexer.c"},"id":"CVE-2016-10210-63dccdf0","deprecated":false,"signature_type":"Function"},{"digest":{"line_hashes":["80857621897109114559431944735066757370","61827619700774974092940345700928089915","102478225584670836247579604382966047398","219032372834368849656605884813469307797","109588135315120109691471111030035542615","96537427801849758662360026998559748281","317635232934510854580762778296505515432","23538836800747787634500347838134524094","304481499534466835726476316150701769780","2644255049699378229218125910463136876","299069777012016755621560779460799186324","155987505363360182313824806965385155743","183511168320239818181951014720002814802","204936355221392564709689320916095505603","309986008312853469303813139027927559978","155987505363360182313824806965385155743","183511168320239818181951014720002814802","2644255049699378229218125910463136876","299069777012016755621560779460799186324","155987505363360182313824806965385155743","183511168320239818181951014720002814802","11794893441291015571078263345487851261","20094263778824492216806257163256338074","143704035517083811600531787863683410213","90357347309198703482864340740937823876","251513632135678423443944202635467523530","222755949534379301691013090963188323513","232129203887699682695622625423412085196","330894402772495228535972548455200485183","319749593986631905136639160392402720041","128002450855004098906129925110246601767","270473198981505932214412468587735414570","221309190167718662926000711138429812779","317832567980407949153468754337434838909","340267854808223507780831579542889517484","221309190167718662926000711138429812779","1059436541282616030039747223613744299","239883045350616390296615249229458988552","26841419352356923960629142770124987704","42613070228645917449104870782097768303","224291725392936973863172042170422483142","150080669820204767495122767822372095415","251493215301854993802774442373183527943","17011814195294081021156642323001208262","25595261209950335540625957754350502461","158358113796867956636219999008273716178","257788128177299968425416246911610334693","141959839968375308616263564718943749302","231452450946971607893076037705472862681","149126086180852221680136269280409942855","269488869491626573016978721824314088538","301843585070199915950018085044560699606","218056480352180112213837428029862832858","227363276576922675750090353819504393155","151126940540158838250741942187173544503","321373381161870382570871738732762336490","255233805905064914026844033411181850482","23694176728614836591384557565323027025","217901105575155353598054782697979905648"],"threshold":0.9},"source":"https://github.com/virustotal/yara/commit/3119b232c9c453c98d8fa8b6ae4e37ba18117cd4","signature_version":"v1","target":{"file":"libyara/re_lexer.c"},"id":"CVE-2016-10210-7e98631f","deprecated":false,"signature_type":"Line"},{"digest":{"function_hash":"129549999812896073106271991978040963283","length":9137},"source":"https://github.com/virustotal/yara/commit/3119b232c9c453c98d8fa8b6ae4e37ba18117cd4","signature_version":"v1","target":{"function":"test_re","file":"tests/test-rules.c"},"id":"CVE-2016-10210-8d88ce20","deprecated":false,"signature_type":"Function"}],"vanir_signatures_modified":"2026-04-11T03:36:58Z","source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-10210.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}