CVE-2017-9989

Опубликовано: 28 июн. 2017

Источник: nvd

CVSS3: 6.5

CVSS2: 4.3

EPSS Низкий

Описание

util/outputtxt.c in libming 0.4.8 mishandles memory allocation. A crafted input will lead to a remote denial of service (NULL pointer dereference) attack.

Ссылки

https://github.com/libming/libming/issues/86
Exploit
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2017/11/msg00022.html
Mailing List
Third Party Advisory
https://security.gentoo.org/glsa/201904-24
Third Party Advisory
https://github.com/libming/libming/issues/86
Exploit
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2017/11/msg00022.html
Mailing List
Third Party Advisory
https://security.gentoo.org/glsa/201904-24
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:libming:libming:0.4.8:*:*:*:*:*:*:*

Конфигурация 2

cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

EPSS

Процентиль: 70%

0.00625

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-476

Связанные уязвимости

CVE-2017-9989

CVSS3: 6.5

ubuntu

больше 8 лет назад

util/outputtxt.c in libming 0.4.8 mishandles memory allocation. A crafted input will lead to a remote denial of service (NULL pointer dereference) attack.

CVE-2017-9989

CVSS3: 6.5

debian

больше 8 лет назад

util/outputtxt.c in libming 0.4.8 mishandles memory allocation. A craf ...

GHSA-fmjc-85gf-4fp3

CVSS3: 6.5

github

больше 3 лет назад

util/outputtxt.c in libming 0.4.8 mishandles memory allocation. A crafted input will lead to a remote denial of service (NULL pointer dereference) attack.

EPSS

Процентиль: 70%

0.00625

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-476