CVE-2021-33644

Опубликовано: 16 авг. 2022

Источник: msrc

CVSS3: 8.1

EPSS Низкий

Описание

Описание отсутствует

Возможность эксплуатации

DOS

N/A

EPSS

Процентиль: 41%

0.00188

Низкий

8.1 High

CVSS3

Связанные уязвимости

CVE-2021-33644

CVSS3: 8.1

ubuntu

около 3 лет назад

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.

CVE-2021-33644

CVSS3: 6.8

redhat

около 3 лет назад

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.

CVE-2021-33644

CVSS3: 8.1

nvd

около 3 лет назад

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.

CVE-2021-33644

CVSS3: 8.1

debian

около 3 лет назад

An attacker who submits a crafted tar file with size in header struct ...

GHSA-f326-p7mm-52h2

CVSS3: 8.1

github

около 3 лет назад

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.

EPSS

Процентиль: 41%

0.00188

Низкий

8.1 High

CVSS3