exploitDog

CVE-2016-9427

Опубликовано: 12 дек. 2016

Источник: debian

Описание

Integer overflow vulnerability in bdwgc before 2016-09-27 allows attackers to cause client of bdwgc denial of service (heap buffer overflow crash) and possibly execute arbitrary code via huge allocation.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libgc	fixed	1:7.4.4-1	experimental	package
libgc	fixed	1:7.6.4-0.3		package
libgc	no-dsa		jessie	package

Примечания

https://github.com/ivmai/bdwgc/issues/135
Fixed by https://github.com/ivmai/bdwgc/commit/4e1a6f9d8f2a49403bbd00b8c8e5324048fb84d4
Fixed by https://github.com/ivmai/bdwgc/commit/7292c02fac2066d39dd1bcc37d1a7054fd1e32ee
Fixed by https://github.com/ivmai/bdwgc/commit/552ad0834672fed86ada6430150ef9ebdd3f54d7

Связанные уязвимости

CVE-2016-9427

CVSS3: 9.8

ubuntu

около 9 лет назад

Integer overflow vulnerability in bdwgc before 2016-09-27 allows attackers to cause client of bdwgc denial of service (heap buffer overflow crash) and possibly execute arbitrary code via huge allocation.

CVE-2016-9427

CVSS3: 7.5

redhat

больше 9 лет назад

Integer overflow vulnerability in bdwgc before 2016-09-27 allows attackers to cause client of bdwgc denial of service (heap buffer overflow crash) and possibly execute arbitrary code via huge allocation.

CVE-2016-9427

CVSS3: 9.8

nvd

около 9 лет назад

Integer overflow vulnerability in bdwgc before 2016-09-27 allows attackers to cause client of bdwgc denial of service (heap buffer overflow crash) and possibly execute arbitrary code via huge allocation.

openSUSE-SU-2016:3126-1

suse-cvrf

около 9 лет назад

Security update for gc

SUSE-SU-2016:3057-1

suse-cvrf

около 9 лет назад

Security update for gc