Описание
The igraph_i_strdiff function in igraph_trie.c in igraph through 0.7.1 has an NULL pointer dereference that allows attackers to cause a denial of service (application crash) via a crafted object.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| igraph | fixed | 0.7.1-3 | package | |
| igraph | fixed | 0.7.1-2.1+deb9u1 | stretch | package |
| r-cran-igraph | fixed | 1.2.2-2 | package | |
| r-cran-igraph | fixed | 1.0.1-1+deb9u1 | stretch | package |
Примечания
https://github.com/igraph/igraph/issues/1141
Fixed by: https://github.com/igraph/igraph/commit/e3a9566e6463186230f215151b57b893df6d9ce2
EPSS
Связанные уязвимости
The igraph_i_strdiff function in igraph_trie.c in igraph through 0.7.1 has an NULL pointer dereference that allows attackers to cause a denial of service (application crash) via a crafted object.
The igraph_i_strdiff function in igraph_trie.c in igraph through 0.7.1 has an NULL pointer dereference that allows attackers to cause a denial of service (application crash) via a crafted object.
The igraph_i_strdiff function in igraph_trie.c in igraph through 0.7.1 has an NULL pointer dereference that allows attackers to cause a denial of service (application crash) via a crafted object.
EPSS