GHSA-h858-mf2m-8jf4

Опубликовано: 18 фев. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 2.9

Описание

zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition.

Ссылки

EPSS

Процентиль: 1%

0.00009

Низкий

2.9 Low

CVSS3

CVE ID

CVE-2026-27171

Дефекты

CWE-1284

Связанные уязвимости

CVE-2026-27171

CVSS3: 2.9

ubuntu

4 месяца назад

zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition.

CVE-2026-27171

CVSS3: 3.3

redhat

4 месяца назад

zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition.

CVE-2026-27171

CVSS3: 2.9

nvd

4 месяца назад

zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition.

CVE-2026-27171

CVSS3: 2.9

msrc

4 месяца назад

zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition.

CVE-2026-27171

CVSS3: 2.9

debian

4 месяца назад

zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32 ...

EPSS

Процентиль: 1%

0.00009

Низкий

2.9 Low

CVSS3

CVE ID

CVE-2026-27171

Дефекты

CWE-1284