CVE-2017-15874

Опубликовано: 24 окт. 2017

Источник: debian

EPSS Низкий

Описание

archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to a read access violation.

Пакет	Статус	Версия исправления	Релиз	Тип
busybox	fixed	1:1.27.2-2		package
busybox	not-affected		stretch	package
busybox	not-affected		jessie	package
busybox	not-affected		wheezy	package

https://bugs.busybox.net/show_bug.cgi?id=10436
Introduced in: https://git.busybox.net/busybox/commit/?id=3989e5adf454a3ab98412b249c2c9bd2a3175ae0
Fixed by: https://git.busybox.net/busybox/commit/?id=9ac42c500586fa5f10a1f6d22c3f797df11b1f6b

EPSS

Процентиль: 51%

0.0028

Низкий

CVE-2017-15874

CVSS3: 5

ubuntu

больше 8 лет назад

archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to a read access violation.

CVE-2017-15874

CVSS3: 3.3

redhat

больше 8 лет назад

archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to a read access violation.

CVE-2017-15874

CVSS3: 5

nvd

больше 8 лет назад

archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to a read access violation.

GHSA-hpwq-frgc-5pqj

CVSS3: 5.5

github

больше 3 лет назад

archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to a read access violation.

openSUSE-SU-2022:0135-1

suse-cvrf

около 4 лет назад

Security update for busybox

EPSS

Процентиль: 51%

0.0028

Низкий