GHSA-g22c-3rrr-vfp7

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

realloc_symlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service (NULL Pointer Dereference) via a crafted iso file.

Ссылки

EPSS

Процентиль: 83%

0.01853

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2017-18199

Дефекты

CWE-476

Связанные уязвимости

CVE-2017-18199

CVSS3: 6.5

ubuntu

почти 8 лет назад

realloc_symlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service (NULL Pointer Dereference) via a crafted iso file.

CVE-2017-18199

CVSS3: 2.8

redhat

почти 8 лет назад

realloc_symlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service (NULL Pointer Dereference) via a crafted iso file.

CVE-2017-18199

CVSS3: 6.5

nvd

почти 8 лет назад

realloc_symlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service (NULL Pointer Dereference) via a crafted iso file.

CVE-2017-18199

CVSS3: 6.5

debian

почти 8 лет назад

realloc_symlink in rock.c in GNU libcdio before 1.0.0 allows remote at ...

SUSE-SU-2020:3023-1

suse-cvrf

больше 5 лет назад

Security update for libcdio

EPSS

Процентиль: 83%

0.01853

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2017-18199

Дефекты

CWE-476