CVE-2017-7519

Опубликовано: 09 июн. 2017

Источник: redhat

CVSS3: 2.3

EPSS Низкий

Описание

In Ceph, a format string flaw was found in the way libradosstriper parses input from user. A user could crash an application or service using the libradosstriper library.

Отчет

This issue did not affect the versions of ceph as shipped with Red Hat Ceph Storage 1.3 and 2 as they did not ship libradosstriper.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Ceph Storage 1.3	ceph	Not affected
Red Hat Ceph Storage 2	ceph	Not affected
Red Hat Enterprise Linux OpenStack Platform 5 (Icehouse)	ceph	Not affected
Red Hat Enterprise Linux OpenStack Platform 6 (Juno)	ceph	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-134

https://bugzilla.redhat.com/show_bug.cgi?id=1460331ceph: libradosstriper processes arbitrary printf placeholders in user input

EPSS

Процентиль: 13%

0.00042

Низкий

2.3 Low

CVSS3

Связанные уязвимости

CVE-2017-7519

CVSS3: 2.3

ubuntu

больше 7 лет назад

In Ceph, a format string flaw was found in the way libradosstriper parses input from user. A user could crash an application or service using the libradosstriper library.

CVE-2017-7519

CVSS3: 2.3

nvd

больше 7 лет назад

In Ceph, a format string flaw was found in the way libradosstriper parses input from user. A user could crash an application or service using the libradosstriper library.

CVE-2017-7519

CVSS3: 2.3

debian

больше 7 лет назад

In Ceph, a format string flaw was found in the way libradosstriper par ...

GHSA-ghfm-8rwr-p3hr

CVSS3: 4.4

github

больше 3 лет назад

In Ceph, a format string flaw was found in the way libradosstriper parses input from user. A user could crash an application or service using the libradosstriper library.

EPSS

Процентиль: 13%

0.00042

Низкий

2.3 Low

CVSS3