Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-10109

Опубликовано: 30 дек. 2016
Источник: redhat
CVSS3: 5.5
EPSS Низкий

Описание

Use-after-free vulnerability in pcsc-lite before 1.8.20 allows a remote attackers to cause denial of service (crash) via a command that uses "cardsList" after the handle has been released through the SCardReleaseContext function.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5pcsc-liteNot affected
Red Hat Enterprise Linux 6pcsc-liteNot affected
Red Hat Enterprise Linux 7pcsc-liteWill not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-416
https://bugzilla.redhat.com/show_bug.cgi?id=1410074pcsc-lite: Use-after-free of cardsList due to SCardReleaseContext invocations

EPSS

Процентиль: 91%
0.06248
Низкий

5.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2016-10109

CVSS3: 7.5
ubuntu
почти 9 лет назад

Use-after-free vulnerability in pcsc-lite before 1.8.20 allows a remote attackers to cause denial of service (crash) via a command that uses "cardsList" after the handle has been released through the SCardReleaseContext function.

nvd логотип

CVE-2016-10109

CVSS3: 7.5
nvd
почти 9 лет назад

Use-after-free vulnerability in pcsc-lite before 1.8.20 allows a remote attackers to cause denial of service (crash) via a command that uses "cardsList" after the handle has been released through the SCardReleaseContext function.

debian логотип

CVE-2016-10109

CVSS3: 7.5
debian
почти 9 лет назад

Use-after-free vulnerability in pcsc-lite before 1.8.20 allows a remot ...

suse-cvrf логотип

openSUSE-SU-2017:0178-1

suse-cvrf
около 9 лет назад

Security update for pcsc-lite

suse-cvrf логотип

SUSE-SU-2017:0286-1

suse-cvrf
около 9 лет назад

Security update for pcsc-lite

EPSS

Процентиль: 91%
0.06248
Низкий

5.5 Medium

CVSS3