Описание
openrsync through 0.5.0, as used in OpenBSD through 7.8 and on other platforms, allows a client to cause a server SIGSEGV by specifying a length of zero for block data, because the relationship between p->rem and p->len is not checked.
EPSS
Процентиль: 23%
0.00076
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-1284
Связанные уязвимости
CVSS3: 5.3
github
около 2 месяцев назад
openrsync through 0.5.0, as used in OpenBSD through 7.8 and on other platforms, allows a client to cause a server SIGSEGV by specifying a length of zero for block data, because the relationship between p->rem and p->len is not checked.
EPSS
Процентиль: 23%
0.00076
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-1284