{"id":"UBUNTU-CVE-2023-34453","details":"snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions prior to 1.1.10.1, causing a fatal error. The function `shuffle(int[] input)` in the file `BitShuffle.java` receives an array of integers and applies a bit shuffle on it. It does so by multiplying the length by 4 and passing it to the natively compiled shuffle function. Since the length is not tested, the multiplication by four can cause an integer overflow and become a smaller value than the true size, or even zero or negative. In the case of a negative value, a `java.lang.NegativeArraySizeException` exception will raise, which can crash the program. In a case of a value that is zero or too small, the code that afterwards references the shuffled array will assume a bigger size of the array, which might cause exceptions such as `java.lang.ArrayIndexOutOfBoundsException`. The same issue exists also when using the `shuffle` functions that receive a double, float, long and short, each using a different multiplier that may cause the same issue. Version 1.1.10.1 contains a patch for this vulnerability.","modified":"2026-05-20T16:07:38.585961462Z","published":"2023-06-15T17:15:00Z","upstream":["CVE-2023-34453"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-34453"},{"type":"REPORT","url":"https://github.com/xerial/snappy-java/blob/master/src/main/java/org/xerial/snappy/BitShuffle.java"},{"type":"REPORT","url":"https://github.com/xerial/snappy-java/security/advisories/GHSA-pqr6-cmr2-h8hf"},{"type":"REPORT","url":"https://github.com/xerial/snappy-java/commit/820e2e074c58748b41dbd547f4edba9e108ad905"},{"type":"REPORT","url":"https://github.com/xerial/snappy-java/blob/05c39b2ca9b5b7b39611529cc302d3d796329611/src/main/java/org/xerial/snappy/BitShuffle.java#L107"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2023-34453"}],"affected":[{"package":{"name":"snappy-java","ecosystem":"Ubuntu:14.04:LTS","purl":"pkg:deb/ubuntu/snappy-java?arch=source&distro=trusty"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.0.4.1~dfsg-1"],"ecosystem_specific":{"binaries":[{"binary_name":"libsnappy-java","binary_version":"1.0.4.1~dfsg-1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-34453.json"}},{"package":{"name":"snappy-java","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/snappy-java?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.1.1.7-2","1.1.2-1","1.1.2.1-2"],"ecosystem_specific":{"binaries":[{"binary_name":"libsnappy-java","binary_version":"1.1.2.1-2"},{"binary_name":"libsnappy-jni","binary_version":"1.1.2.1-2"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-34453.json"}},{"package":{"name":"snappy-java","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/snappy-java?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.1.4-1"],"ecosystem_specific":{"binaries":[{"binary_name":"libsnappy-java","binary_version":"1.1.4-1"},{"binary_name":"libsnappy-jni","binary_version":"1.1.4-1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-34453.json"}},{"package":{"name":"snappy-java","ecosystem":"Ubuntu:20.04:LTS","purl":"pkg:deb/ubuntu/snappy-java?arch=source&distro=focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.1.7.2-1","1.1.7.3-1","1.1.7.3-1build1"],"ecosystem_specific":{"binaries":[{"binary_name":"libsnappy-java","binary_version":"1.1.7.3-1build1"},{"binary_name":"libsnappy-jni","binary_version":"1.1.7.3-1build1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-34453.json"}},{"package":{"name":"snappy-java","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/snappy-java?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.1.8.3-1"],"ecosystem_specific":{"binaries":[{"binary_name":"libsnappy-java","binary_version":"1.1.8.3-1"},{"binary_name":"libsnappy-jni","binary_version":"1.1.8.3-1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-34453.json"}},{"package":{"name":"snappy-java","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/snappy-java?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.1.8.3-1","1.1.10.5-1","1.1.10.5-1build1"],"ecosystem_specific":{"binaries":[{"binary_name":"libsnappy-java","binary_version":"1.1.10.5-1build1"},{"binary_name":"libsnappy-jni","binary_version":"1.1.10.5-1build1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-34453.json"}},{"package":{"name":"snappy-java","ecosystem":"Ubuntu:25.10","purl":"pkg:deb/ubuntu/snappy-java?arch=source&distro=questing"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.1.10.7-1"],"ecosystem_specific":{"binaries":[{"binary_name":"libsnappy-java","binary_version":"1.1.10.7-1"},{"binary_name":"libsnappy-jni","binary_version":"1.1.10.7-1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-34453.json"}},{"package":{"name":"snappy-java","ecosystem":"Ubuntu:26.04:LTS","purl":"pkg:deb/ubuntu/snappy-java?arch=source&distro=resolute"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.1.10.7-1","1.1.10.8-1"],"ecosystem_specific":{"binaries":[{"binary_name":"libsnappy-java","binary_version":"1.1.10.8-1"},{"binary_name":"libsnappy-jni","binary_version":"1.1.10.8-1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-34453.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]}