CVE-2017-7476

Опубликовано: 02 мая 2017

Источник: debian

EPSS Низкий

Описание

Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.

Пакет	Статус	Версия исправления	Релиз	Тип
gnulib	not-affected			package

Fixed by: http://git.savannah.gnu.org/gitweb/?p=gnulib.git;a=commitdiff;h=94e01571
Introduced with 4bc76593 and 4e6e16b3f.

EPSS

Процентиль: 81%

0.01611

Низкий

CVE-2017-7476

CVSS3: 9.8

ubuntu

почти 9 лет назад

Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.

CVE-2017-7476

CVSS3: 7.8

redhat

почти 9 лет назад

Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.

CVE-2017-7476

CVSS3: 9.8

nvd

почти 9 лет назад

Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.

GHSA-m9rq-c483-gg38

CVSS3: 9.8

github

больше 3 лет назад

Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.

EPSS

Процентиль: 81%

0.01611

Низкий