CVE-2015-5327

Опубликовано: 09 нояб. 2015

Источник: redhat

CVSS2: 4

EPSS Низкий

Описание

Out-of-bounds memory read in the x509_decode_time function in x509_cert_parser.c in Linux kernels 4.3-rc1 and after.

Отчет

This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, 7 and MRG-2, as the code introduced the flaw is not present in these products.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	kernel	Not affected
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Not affected
Red Hat Enterprise Linux 7	kernel-rt	Not affected
Red Hat Enterprise MRG 2	kernel-rt	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=1278978kernel: User triggerable out-of-bounds read

EPSS

Процентиль: 43%

0.00207

Низкий

4 Medium

CVSS2

Связанные уязвимости

CVE-2015-5327

CVSS3: 6.5

ubuntu

больше 7 лет назад

Out-of-bounds memory read in the x509_decode_time function in x509_cert_parser.c in Linux kernels 4.3-rc1 and after.

CVE-2015-5327

CVSS3: 6.5

nvd

больше 7 лет назад

Out-of-bounds memory read in the x509_decode_time function in x509_cert_parser.c in Linux kernels 4.3-rc1 and after.

CVE-2015-5327

CVSS3: 6.5

debian

больше 7 лет назад

Out-of-bounds memory read in the x509_decode_time function in x509_cer ...

GHSA-v576-6xqq-w5hh

CVSS3: 6.5

github

около 3 лет назад

Out-of-bounds memory read in the x509_decode_time function in x509_cert_parser.c in Linux kernels 4.3-rc1 and after.

ELSA-2019-4642

oracle-oval

около 6 лет назад

ELSA-2019-4642: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS

Процентиль: 43%

0.00207

Низкий

4 Medium

CVSS2