Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-5545

Опубликовано: 21 янв. 2017
Источник: debian

Описание

The main function in plistutil.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read) via Apple Property List data that is too short.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libplistfixed1.12+git+1+e37ca00-0.1package

Примечания

  • https://github.com/libimobiledevice/libplist/issues/87

  • Fixed by: https://github.com/libimobiledevice/libplist/commit/7391a506352c009fe044dead7baad9e22dd279ee

Связанные уязвимости

ubuntu логотип

CVE-2017-5545

CVSS3: 9.1
ubuntu
около 9 лет назад

The main function in plistutil.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read) via Apple Property List data that is too short.

redhat логотип

CVE-2017-5545

CVSS3: 4.4
redhat
около 9 лет назад

The main function in plistutil.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read) via Apple Property List data that is too short.

nvd логотип

CVE-2017-5545

CVSS3: 9.1
nvd
около 9 лет назад

The main function in plistutil.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read) via Apple Property List data that is too short.

github логотип

GHSA-6p5p-78mf-wwg6

CVSS3: 9.1
github
больше 3 лет назад

The main function in plistutil.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read) via Apple Property List data that is too short.

suse-cvrf логотип

openSUSE-SU-2017:0428-1

suse-cvrf
почти 9 лет назад

Security update for libplist