CVE-2017-17846

Опубликовано: 27 дек. 2017

Источник: debian

Описание

An issue was discovered in Enigmail before 1.9.9. Regular expressions are exploitable for Denial of Service, because of attempts to match arbitrarily long strings, aka TBE-01-003.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
enigmail	fixed	2:1.9.9-1		package

Примечания

https://enigmail.net/download/other/Enigmail%20Pentest%20Report%20by%20Cure53%20-%20Excerpt.pdf

Связанные уязвимости

CVE-2017-17846

CVSS3: 7.5

ubuntu

больше 7 лет назад

An issue was discovered in Enigmail before 1.9.9. Regular expressions are exploitable for Denial of Service, because of attempts to match arbitrarily long strings, aka TBE-01-003.

CVE-2017-17846

CVSS3: 7.5

nvd

больше 7 лет назад

An issue was discovered in Enigmail before 1.9.9. Regular expressions are exploitable for Denial of Service, because of attempts to match arbitrarily long strings, aka TBE-01-003.

GHSA-xxw4-vmw8-xc6f

CVSS3: 7.5

github

около 3 лет назад

An issue was discovered in Enigmail before 1.9.9. Regular expressions are exploitable for Denial of Service, because of attempts to match arbitrarily long strings, aka TBE-01-003.