libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are vulnerable to out-of-bounds array access. A user of the GNOME desktop environment can be exploited by downloading a cue sheet from a malicious webpage. Because the file is saved to `~/Downloads`, it is then automatically scanned by tracker-miners. And because it has a .cue filename extension, tracker-miners use libcue to parse the file. The file exploits the vulnerability in libcue to gain code execution. This issue is patched in version 2.3.0.

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-f4e74a94a2 advisory.

  - libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are     vulnerable to out-of-bounds array access. A user of the GNOME desktop environment can be exploited by     downloading a cue sheet from a malicious webpage. Because the file is saved to `~/Downloads`, it is then     automatically scanned by tracker-miners. And because it has a .cue filename extension, tracker-miners use     libcue to parse the file. The file exploits the vulnerability in libcue to gain code execution. This issue     is patched in version 2.3.0. (CVE-2023-43641)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4090-1 advisory.

  - libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are     vulnerable to out-of-bounds array access. A user of the GNOME desktop environment can be exploited by     downloading a cue sheet from a malicious webpage. Because the file is saved to `~/Downloads`, it is then     automatically scanned by tracker-miners. And because it has a .cue filename extension, tracker-miners use     libcue to parse the file. The file exploits the vulnerability in libcue to gain code execution. This issue     is patched in version 2.3.0. (CVE-2023-43641)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Ubuntu 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6423-2 advisory.

    USN-6423-1 fixed a vulnerability in CUE. This update provides the corresponding updates for Ubuntu 23.10.

    Original advisory details:

    It was discovered that CUE incorrectly handled certain files.

    An attacker could possibly use this issue to expose sensitive

    information or execute arbitrary code.

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the ae0ee356-6ae1-11ee-bfb6-8c164567ca3c advisory.

  - libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are     vulnerable to out-of-bounds array access. A user of the GNOME desktop environment can be exploited by     downloading a cue sheet from a malicious webpage. Because the file is saved to `~/Downloads`, it is then     automatically scanned by tracker-miners. And because it has a .cue filename extension, tracker-miners use     libcue to parse the file. The file exploits the vulnerability in libcue to gain code execution. This issue     is patched in version 2.3.0. (CVE-2023-43641)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-1fe05ac8d9 advisory.

  - libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are     vulnerable to out-of-bounds array access. A user of the GNOME desktop environment can be exploited by     downloading a cue sheet from a malicious webpage. Because the file is saved to `~/Downloads`, it is then     automatically scanned by tracker-miners. And because it has a .cue filename extension, tracker-miners use     libcue to parse the file. The file exploits the vulnerability in libcue to gain code execution. This issue     is patched in version 2.3.0. (CVE-2023-43641)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3615 advisory.

  - libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are     vulnerable to out-of-bounds array access. A user of the GNOME desktop environment can be exploited by     downloading a cue sheet from a malicious webpage. Because the file is saved to `~/Downloads`, it is then     automatically scanned by tracker-miners. And because it has a .cue filename extension, tracker-miners use     libcue to parse the file. The file exploits the vulnerability in libcue to gain code execution. This issue     is patched in version 2.3.0. (CVE-2023-43641)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-eec9ce5935 advisory.

  - libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are     vulnerable to out-of-bounds array access. A user of the GNOME desktop environment can be exploited by     downloading a cue sheet from a malicious webpage. Because the file is saved to `~/Downloads`, it is then     automatically scanned by tracker-miners. And because it has a .cue filename extension, tracker-miners use     libcue to parse the file. The file exploits the vulnerability in libcue to gain code execution. This issue     is patched in version 2.3.0. (CVE-2023-43641)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5524 advisory.

  - libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are     vulnerable to out-of-bounds array access. A user of the GNOME desktop environment can be exploited by     downloading a cue sheet from a malicious webpage. Because the file is saved to `~/Downloads`, it is then     automatically scanned by tracker-miners. And because it has a .cue filename extension, tracker-miners use     libcue to parse the file. The file exploits the vulnerability in libcue to gain code execution. This issue     is patched in version 2.3.0. (CVE-2023-43641)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-40044895ce advisory.

  - libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are     vulnerable to out-of-bounds array access. A user of the GNOME desktop environment can be exploited by     downloading a cue sheet from a malicious webpage. Because the file is saved to `~/Downloads`, it is then     automatically scanned by tracker-miners. And because it has a .cue filename extension, tracker-miners use     libcue to parse the file. The file exploits the vulnerability in libcue to gain code execution. This issue     is patched in version 2.3.0. (CVE-2023-43641)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-e8f45c67f5 advisory.

  - libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are     vulnerable to out-of-bounds array access. A user of the GNOME desktop environment can be exploited by     downloading a cue sheet from a malicious webpage. Because the file is saved to `~/Downloads`, it is then     automatically scanned by tracker-miners. And because it has a .cue filename extension, tracker-miners use     libcue to parse the file. The file exploits the vulnerability in libcue to gain code execution. This issue     is patched in version 2.3.0. (CVE-2023-43641)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of libcue installed on the remote host is prior to 2.2.1. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-283-01 advisory.

  - libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are     vulnerable to out-of-bounds array access. A user of the GNOME desktop environment can be exploited by     downloading a cue sheet from a malicious webpage. Because the file is saved to `~/Downloads`, it is then     automatically scanned by tracker-miners. And because it has a .cue filename extension, tracker-miners use     libcue to parse the file. The file exploits the vulnerability in libcue to gain code execution.
    (CVE-2023-43641)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote host is affected by the vulnerability described in GLSA-202310-10 (libcue: Arbitrary Code Execution)

  - libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are     vulnerable to out-of-bounds array access. A user of the GNOME desktop environment can be exploited by     downloading a cue sheet from a malicious webpage. Because the file is saved to `~/Downloads`, it is then     automatically scanned by tracker-miners. And because it has a .cue filename extension, tracker-miners use     libcue to parse the file. The file exploits the vulnerability in libcue to gain code execution.
    (CVE-2023-43641)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 host has packages installed that are affected by a vulnerability as referenced in the USN-6423-1 advisory.

    It was discovered that CUE incorrectly handled certain files. An attacker could possibly use this issue to     expose sensitive information or execute arbitrary code.

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
185226	Fedora 39 : libcue (2023-f4e74a94a2)	Nessus	Fedora Local Security Checks	high
183284	SUSE SLED15 / SLES15 Security Update : libcue (SUSE-SU-2023:4090-1)	Nessus	SuSE Local Security Checks	high
183273	Ubuntu 23.10 : CUE vulnerability (USN-6423-2)	Nessus	Ubuntu Local Security Checks	high
183090	FreeBSD : libcue -- out-of-bounds array access (ae0ee356-6ae1-11ee-bfb6-8c164567ca3c)	Nessus	FreeBSD Local Security Checks	high
182983	Fedora 37 : libcue (2023-1fe05ac8d9)	Nessus	Fedora Local Security Checks	high
182953	Debian DLA-3615-1 : libcue - LTS security update	Nessus	Debian Local Security Checks	high
182945	Fedora 38 : libcue (2023-eec9ce5935)	Nessus	Fedora Local Security Checks	high
182943	Debian DSA-5524-1 : libcue - security update	Nessus	Debian Local Security Checks	high
182887	Fedora 37 : tracker-miners (2023-40044895ce)	Nessus	Fedora Local Security Checks	high
182886	Fedora 38 : tracker-miners (2023-e8f45c67f5)	Nessus	Fedora Local Security Checks	high
182871	Slackware Linux 15.0 / current libcue Vulnerability (SSA:2023-283-01)	Nessus	Slackware Local Security Checks	high
182793	GLSA-202310-10 : libcue: Arbitrary Code Execution	Nessus	Gentoo Local Security Checks	high
182791	Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : CUE vulnerability (USN-6423-1)	Nessus	Ubuntu Local Security Checks	high

Detections

Analytics

CVE-2023-43641

high

Tenable Plugins

high

high

high

high

high

high

high

high

high

high

high

high

high