CVE-2018-1000122

Опубликовано: 14 мар. 2018

Источник: debian

EPSS Низкий

Описание

A buffer over-read exists in curl 7.20.0 to and including curl 7.58.0 in the RTSP+RTP handling code that allows an attacker to cause a denial of service or information leakage

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
curl	fixed	7.60.0-1		package

Примечания

https://curl.haxx.se/docs/adv_2018-b047.html
https://curl.haxx.se/CVE-2018-1000122.patch

EPSS

Процентиль: 82%

0.01751

Низкий

Связанные уязвимости

CVE-2018-1000122

CVSS3: 9.1

ubuntu

больше 7 лет назад

A buffer over-read exists in curl 7.20.0 to and including curl 7.58.0 in the RTSP+RTP handling code that allows an attacker to cause a denial of service or information leakage

CVE-2018-1000122

CVSS3: 6.5

redhat

больше 7 лет назад

A buffer over-read exists in curl 7.20.0 to and including curl 7.58.0 in the RTSP+RTP handling code that allows an attacker to cause a denial of service or information leakage

CVE-2018-1000122

CVSS3: 9.1

nvd

больше 7 лет назад

A buffer over-read exists in curl 7.20.0 to and including curl 7.58.0 in the RTSP+RTP handling code that allows an attacker to cause a denial of service or information leakage

GHSA-8h6f-6774-3wxg

CVSS3: 9.1

github

больше 3 лет назад

A buffer over-read exists in curl 7.20.0 to and including curl 7.58.0 in the RTSP+RTP handling code that allows an attacker to cause a denial of service or information leakage

openSUSE-SU-2018:0794-1

suse-cvrf

больше 7 лет назад

Security update for curl

EPSS

Процентиль: 82%

0.01751

Низкий