CVE-2023-26924

Опубликовано: 27 мар. 2023

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

LLVM a0dab4950 has a segmentation fault in mlir::outlineSingleBlockRegion. NOTE: third parties dispute this because the LLVM security policy excludes "Language front-ends ... for which a malicious input file can cause undesirable behavior."

Ссылки

https://gist.github.com/Colloportus0/fc16d10d74aedf89d5d1d020ebb89c0c
Third Party Advisory
https://github.com/llvm/llvm-project/issues/60216
Exploit
Issue Tracking
Third Party Advisory
https://llvm.org/docs/Security.html#what-is-considered-a-security-issue
https://gist.github.com/Colloportus0/fc16d10d74aedf89d5d1d020ebb89c0c
Third Party Advisory
https://github.com/llvm/llvm-project/issues/60216
Exploit
Issue Tracking
Third Party Advisory
https://llvm.org/docs/Security.html#what-is-considered-a-security-issue

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:llvm:llvm:2023-01-22:*:*:*:*:*:*:*

EPSS

Процентиль: 10%

0.00035

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-120

Связанные уязвимости

CVE-2023-26924

CVSS3: 5.5

ubuntu

почти 3 года назад

CVE-2023-26924

CVSS3: 5.5

redhat

почти 3 года назад

CVE-2023-26924

CVSS3: 5.5

debian

почти 3 года назад

LLVM a0dab4950 has a segmentation fault in mlir::outlineSingleBlockReg ...

GHSA-472h-pprq-pg3p

CVSS3: 5.5

github

почти 3 года назад

LLVM a0dab4950 has a segmentation fault in mlir::outlineSingleBlockRegion.

EPSS

Процентиль: 10%

0.00035

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-120