CVE-2024-50610

Опубликовано: 27 окт. 2024

Источник: nvd

CVSS3: 3.6

EPSS Низкий

Описание

GSL (GNU Scientific Library) through 2.8 has an integer signedness error in gsl_siman_solve_many in siman/siman.c. When params.n_tries is negative, incorrect memory allocation occurs.

Ссылки

https://git.savannah.gnu.org/cgit/gsl.git/log/siman/siman.c
Product
https://github.com/silviadefra/GolDRuSh/blob/main/vulnerabilities/gsl.md
Exploit
Third Party Advisory
https://www.gnu.org/software/gsl/doc/html/siman.html
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gnu:gnu_scientific_library:*:*:*:*:*:*:*:*

Версия до 2.8 (включая)

EPSS

Процентиль: 12%

0.00039

Низкий

3.6 Low

CVSS3

Дефекты

CWE-190

Связанные уязвимости

CVE-2024-50610

CVSS3: 3.6

ubuntu

около 1 года назад

GSL (GNU Scientific Library) through 2.8 has an integer signedness error in gsl_siman_solve_many in siman/siman.c. When params.n_tries is negative, incorrect memory allocation occurs.

CVE-2024-50610

CVSS3: 3.6

redhat

около 1 года назад

GSL (GNU Scientific Library) through 2.8 has an integer signedness error in gsl_siman_solve_many in siman/siman.c. When params.n_tries is negative, incorrect memory allocation occurs.

CVE-2024-50610

CVSS3: 3.6

debian

около 1 года назад

GSL (GNU Scientific Library) through 2.8 has an integer signedness err ...

GHSA-pj8w-xcg3-82vx

CVSS3: 3.6

github

около 1 года назад

GSL (GNU Scientific Library) through 2.8 has an integer signedness error in gsl_siman_solve_many in siman/siman.c. When params.n_tries is negative, incorrect memory allocation occurs.

EPSS

Процентиль: 12%

0.00039

Низкий

3.6 Low

CVSS3

Дефекты

CWE-190