Описание
There is a NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libsolv | fixed | 0.6.36-1 | package | |
| libsolv | ignored | buster | package | |
| libsolv | ignored | stretch | package | |
| libsolv | ignored | jessie | package |
Примечания
https://bugzilla.redhat.com/show_bug.cgi?id=1652599
https://github.com/openSUSE/libsolv/pull/291
https://github.com/openSUSE/libsolv/commit/4830af9d979d3685de538b80fbeba51ad590525e
Связанные уязвимости
There is a NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service.
There is a NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service.
There is a NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service.
There is a NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service.
Уязвимость функции testcase_str2dep_complex библиотеки libsolv, позволяющая нарушителю вызвать отказ в обслуживании