CVE-2019-11578

Опубликовано: 28 апр. 2019

Источник: debian

Описание

auth.c in dhcpcd before 7.2.1 allowed attackers to infer secrets by performing latency attacks.

Пакет	Статус	Версия исправления	Релиз	Тип
dhcpcd5	fixed	7.1.0-2		package
dhcpcd5	no-dsa		stretch	package
dhcpcd5	not-affected		jessie	package

https://roy.marples.name/git/dhcpcd.git/commit/?id=7121040790b611ca3fbc400a1bbcd4364ef57233
https://roy.marples.name/git/dhcpcd.git/commit/?id=cfde89ab66cb4e5957b1c4b68ad6a9449e2784da
https://roy.marples.name/git/dhcpcd.git/commit/?id=aee631aadeef4283c8a749c1caf77823304acf5e

CVE-2019-11578

CVSS3: 5.9

ubuntu

почти 7 лет назад

auth.c in dhcpcd before 7.2.1 allowed attackers to infer secrets by performing latency attacks.

CVE-2019-11578

CVSS3: 5.9

nvd

почти 7 лет назад

auth.c in dhcpcd before 7.2.1 allowed attackers to infer secrets by performing latency attacks.

GHSA-wmp8-c7xc-v29x

github

больше 3 лет назад

auth.c in dhcpcd before 7.2.1 allowed attackers to infer secrets by performing latency attacks.