CVE-2022-3715

Опубликовано: 05 янв. 2023

Источник: debian

EPSS Низкий

Описание

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory problems.

Пакет	Статус	Версия исправления	Релиз	Тип
bash	fixed	5.2-1		package
bash	no-dsa		bullseye	package
bash	not-affected		buster	package

https://bugzilla.redhat.com/show_bug.cgi?id=2126720
https://lists.gnu.org/archive/html/bug-bash/2022-08/msg00147.html
Introduced by: http://git.savannah.gnu.org/cgit/bash.git/commit/?id=bdf37a2d4f0f052ffd15d36de3b3a5d28f357000 (5.1)

EPSS

Процентиль: 14%

0.00048

Низкий

CVE-2022-3715

CVSS3: 7.8

ubuntu

больше 2 лет назад

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory problems.

CVE-2022-3715

CVSS3: 6.6

redhat

почти 3 года назад

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory problems.

CVE-2022-3715

CVSS3: 7.8

nvd

больше 2 лет назад

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory problems.

RLSA-2023:0340

rocky

больше 2 лет назад

Moderate: bash security update

GHSA-cr4j-fv7c-759c

CVSS3: 9.8

github

больше 2 лет назад

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory problems.

EPSS

Процентиль: 14%

0.00048

Низкий