Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2019-9633

Опубликовано: 08 мар. 2019
Источник: debian
EPSS Низкий

Описание

gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during the execution of a connection-attempting enumeration, which allows remote attackers to cause a denial of service (g_socket_client_connected_callback mishandling and application crash) via a crafted web site, as demonstrated by GNOME Web (aka Epiphany).

Пакеты

ПакетСтатусВерсия исправленияРелизТип
glib2.0not-affectedpackage

Примечания

  • https://gitlab.gnome.org/GNOME/glib/issues/1649

  • https://gitlab.gnome.org/GNOME/glib/commit/d553d92d6e9f53cbe5a34166fcb919ba652c6a8e (2.59.2)

  • Issue only in 2.59.1 and fixed in 2.59.2.

EPSS

Процентиль: 70%
0.00654
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2019-9633

CVSS3: 6.5
ubuntu
почти 7 лет назад

gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during the execution of a connection-attempting enumeration, which allows remote attackers to cause a denial of service (g_socket_client_connected_callback mishandling and application crash) via a crafted web site, as demonstrated by GNOME Web (aka Epiphany).

redhat логотип

CVE-2019-9633

CVSS3: 8.2
redhat
около 7 лет назад

gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during the execution of a connection-attempting enumeration, which allows remote attackers to cause a denial of service (g_socket_client_connected_callback mishandling and application crash) via a crafted web site, as demonstrated by GNOME Web (aka Epiphany).

nvd логотип

CVE-2019-9633

CVSS3: 6.5
nvd
почти 7 лет назад

gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during the execution of a connection-attempting enumeration, which allows remote attackers to cause a denial of service (g_socket_client_connected_callback mishandling and application crash) via a crafted web site, as demonstrated by GNOME Web (aka Epiphany).

github логотип

GHSA-x44m-v68f-crcx

CVSS3: 6.5
github
больше 3 лет назад

gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during the execution of a connection-attempting enumeration, which allows remote attackers to cause a denial of service (g_socket_client_connected_callback mishandling and application crash) via a crafted web site, as demonstrated by GNOME Web (aka Epiphany).

EPSS

Процентиль: 70%
0.00654
Низкий