Описание
Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | coreutils | Not affected | ||
| Red Hat Enterprise Linux 6 | coreutils | Not affected | ||
| Red Hat Enterprise Linux 7 | coreutils | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Important
Дефект:
CWE-787
https://bugzilla.redhat.com/show_bug.cgi?id=1445185gnulib: Out-of-bounds write by setting a large TZ variable
EPSS
Процентиль: 81%
0.01611
Низкий
7.8 High
CVSS3
Связанные уязвимости
CVSS3: 9.8
ubuntu
почти 9 лет назад
Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.
CVSS3: 9.8
nvd
почти 9 лет назад
Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.
CVSS3: 9.8
debian
почти 9 лет назад
Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ ...
CVSS3: 9.8
github
больше 3 лет назад
Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.
EPSS
Процентиль: 81%
0.01611
Низкий
7.8 High
CVSS3