GHSA-35f2-fx5v-8568

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

ber-decoder.c in Libksba before 1.3.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (crash) via crafted BER data, which leads to a buffer overflow.

Ссылки

EPSS

Процентиль: 73%

0.00791

Низкий

7.5 High

CVSS3

CVE ID

CVE-2016-4354

Дефекты

CWE-119

Связанные уязвимости

CVE-2016-4354

CVSS3: 7.5

ubuntu

больше 9 лет назад

ber-decoder.c in Libksba before 1.3.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (crash) via crafted BER data, which leads to a buffer overflow.

CVE-2016-4354

redhat

почти 11 лет назад

ber-decoder.c in Libksba before 1.3.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (crash) via crafted BER data, which leads to a buffer overflow.

CVE-2016-4354

CVSS3: 7.5

nvd

больше 9 лет назад

ber-decoder.c in Libksba before 1.3.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (crash) via crafted BER data, which leads to a buffer overflow.

CVE-2016-4354

CVSS3: 7.5

debian

больше 9 лет назад

ber-decoder.c in Libksba before 1.3.3 uses an incorrect integer data t ...

EPSS

Процентиль: 73%

0.00791

Низкий

7.5 High

CVSS3

CVE ID

CVE-2016-4354

Дефекты

CWE-119