CVE-2016-6131

Опубликовано: 07 фев. 2017

Источник: debian

Описание

The demangler in GNU Libiberty allows remote attackers to cause a denial of service (infinite loop, stack overflow, and crash) via a cycle in the references of remembered mangled types.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libiberty	fixed	20161017-1		package
libiberty	no-dsa		jessie	package
ht	fixed	2.1.0+repack1-2		package
ht	no-dsa		jessie	package
ht	no-dsa		wheezy	package
binutils	fixed	2.27.51.20161102-1		package
binutils	ignored		jessie	package

Примечания

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=71696
https://gcc.gnu.org/viewcvs/gcc?view=revision&revision=239143

Связанные уязвимости

CVE-2016-6131

CVSS3: 7.5

ubuntu

почти 9 лет назад

The demangler in GNU Libiberty allows remote attackers to cause a denial of service (infinite loop, stack overflow, and crash) via a cycle in the references of remembered mangled types.

CVE-2016-6131

CVSS3: 3.3

redhat

больше 9 лет назад

The demangler in GNU Libiberty allows remote attackers to cause a denial of service (infinite loop, stack overflow, and crash) via a cycle in the references of remembered mangled types.

CVE-2016-6131

CVSS3: 7.5

nvd

почти 9 лет назад

The demangler in GNU Libiberty allows remote attackers to cause a denial of service (infinite loop, stack overflow, and crash) via a cycle in the references of remembered mangled types.

GHSA-j4gc-wrx5-3h2g

CVSS3: 7.5

github

больше 3 лет назад

The demangler in GNU Libiberty allows remote attackers to cause a denial of service (infinite loop, stack overflow, and crash) via a cycle in the references of remembered mangled types.