CVE-2019-17544

Опубликовано: 14 окт. 2019

Источник: debian

EPSS Низкий

Описание

libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character.

Пакет	Статус	Версия исправления	Релиз	Тип
aspell	fixed	0.60.8-1		package

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=16109
https://github.com/GNUAspell/aspell/commit/80fa26c74279fced8d778351cff19d1d8f44fe4e

EPSS

Процентиль: 58%

0.0036

Низкий

CVE-2019-17544

CVSS3: 9.1

ubuntu

больше 6 лет назад

libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character.

CVE-2019-17544

CVSS3: 6.6

redhat

больше 6 лет назад

libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character.

CVE-2019-17544

CVSS3: 9.1

nvd

больше 6 лет назад

libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character.

SUSE-SU-2019:3034-1

suse-cvrf

около 6 лет назад

Security update for aspell

GHSA-3f6h-6ch9-p8jv

github

больше 3 лет назад

libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character.

EPSS

Процентиль: 58%

0.0036

Низкий