Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-7246

Опубликовано: 23 мар. 2017
Источник: debian
EPSS Низкий

Описание

Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
pcre3removedpackage
pcre3no-dsajessiepackage
pcre3not-affectedwheezypackage

Примечания

  • https://bugs.exim.org/show_bug.cgi?id=2057

  • https://blogs.gentoo.org/ago/2017/03/20/libpcre-two-stack-based-buffer-overflow-write-in-pcre32_copy_substring-pcre_get-c/

  • pcre32 support enabled only in pcre3/1:8.35-4

  • Fixed by: http://vcs.pcre.org/pcre?view=revision&revision=1691 (8.41)

EPSS

Процентиль: 69%
0.0059
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2017-7246

CVSS3: 7.8
ubuntu
почти 9 лет назад

Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file.

redhat логотип

CVE-2017-7246

CVSS3: 3.7
redhat
почти 9 лет назад

Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file.

nvd логотип

CVE-2017-7246

CVSS3: 7.8
nvd
почти 9 лет назад

Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file.

github логотип

GHSA-3fjr-mgxw-wcwm

CVSS3: 7.8
github
больше 3 лет назад

Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file.

suse-cvrf логотип

SUSE-SU-2021:3652-1

suse-cvrf
около 4 лет назад

Security update for pcre

EPSS

Процентиль: 69%
0.0059
Низкий