Описание
A race condition in the one-pass compression functions of Zstandard prior to version 1.3.8 could allow an attacker to write bytes out of bounds if an output buffer smaller than the recommended size was used.
A vulnerability found in zstd. A race condition in the one-pass compression functions of Zstandard allows an attacker to write bytes out of bounds if an output buffer smaller than the recommended size is used.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 8 | mysql:8.0/mysql | Not affected | ||
| Red Hat Enterprise Linux 8 | zstd | Not affected | ||
| Red Hat Enterprise Linux 9 | zstd | Not affected | ||
| Red Hat Software Collections | rh-mysql80-mysql | Not affected |
Показывать по
Дополнительная информация
Статус:
8.1 High
CVSS3
Связанные уязвимости
A race condition in the one-pass compression functions of Zstandard prior to version 1.3.8 could allow an attacker to write bytes out of bounds if an output buffer smaller than the recommended size was used.
A race condition in the one-pass compression functions of Zstandard prior to version 1.3.8 could allow an attacker to write bytes out of bounds if an output buffer smaller than the recommended size was used.
A race condition in the one-pass compression functions of Zstandard pr ...
8.1 High
CVSS3