CVE-2014-9488

Опубликовано: 14 апр. 2015

Источник: debian

Описание

The is_utf8_well_formed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
less	fixed	481-1		package

Примечания

https://www.openwall.com/lists/oss-security/2015/03/10/14
https://blog.fuzzing-project.org/3-less-out-of-bounds-read-access-TFPA-0022014.html

Связанные уязвимости

CVE-2014-9488

ubuntu

почти 11 лет назад

The is_utf8_well_formed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read.

CVE-2014-9488

CVSS3: 2.5

redhat

почти 11 лет назад

The is_utf8_well_formed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read.

CVE-2014-9488

nvd

почти 11 лет назад

The is_utf8_well_formed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read.

SUSE-SU-2020:2687-1

suse-cvrf

больше 5 лет назад

Security update for less

GHSA-pvw4-m8q5-4fhj

github

больше 3 лет назад

The is_utf8_well_formed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read.