CVE-2014-9765

Опубликовано: 19 апр. 2016

Источник: debian

EPSS Низкий

Описание

Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
xdelta3	fixed	3.0.8-dfsg-1.1		package

Примечания

https://github.com/jmacd/xdelta-devel/commit/ef93ff74203e030073b898c05e8b4860b5d09ef2
https://www.openwall.com/lists/oss-security/2016/02/08/1

EPSS

Процентиль: 85%

0.02475

Низкий

Связанные уязвимости

CVE-2014-9765

CVSS3: 8.8

ubuntu

почти 10 лет назад

Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file.

CVE-2014-9765

redhat

больше 11 лет назад

Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file.

CVE-2014-9765

CVSS3: 8.8

nvd

почти 10 лет назад

Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file.

GHSA-g659-9pjq-jf3x

CVSS3: 8.8

github

больше 3 лет назад

Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file.

EPSS

Процентиль: 85%

0.02475

Низкий