Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2015-5522

Опубликовано: 11 авг. 2015
Источник: debian

Описание

Heap-based buffer overflow in the ParseValue function in lexer.c in tidy before 4.9.31 allows remote attackers to cause a denial of service (crash) via vectors involving a command character in an href.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
tidyfixed20091223cvs-1.5package

Примечания

  • https://github.com/htacg/tidy-html5/issues/217

  • https://www.openwall.com/lists/oss-security/2015/06/04/2

Связанные уязвимости

ubuntu логотип

CVE-2015-5522

ubuntu
больше 10 лет назад

Heap-based buffer overflow in the ParseValue function in lexer.c in tidy before 4.9.31 allows remote attackers to cause a denial of service (crash) via vectors involving a command character in an href.

redhat логотип

CVE-2015-5522

redhat
больше 10 лет назад

Heap-based buffer overflow in the ParseValue function in lexer.c in tidy before 4.9.31 allows remote attackers to cause a denial of service (crash) via vectors involving a command character in an href.

nvd логотип

CVE-2015-5522

nvd
больше 10 лет назад

Heap-based buffer overflow in the ParseValue function in lexer.c in tidy before 4.9.31 allows remote attackers to cause a denial of service (crash) via vectors involving a command character in an href.

github логотип

GHSA-wp28-phrj-p6rh

github
больше 3 лет назад

Heap-based buffer overflow in the ParseValue function in lexer.c in tidy before 4.9.31 allows remote attackers to cause a denial of service (crash) via vectors involving a command character in an href.

suse-cvrf логотип

SUSE-SU-2015:1525-1

suse-cvrf
больше 10 лет назад

Security update for tidy