Описание
Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service (use-after-free and daemon crash) because of a force_rescan_user error.
Отчет
This issue did not affect the versions of vixie-cron as shipped with Red Hat Enterprise Linux 5 as they did not include the vulnerable code. This issue did not affect the versions of cronie as shipped with Red Hat Enterprise Linux 6, 7, and 8 as they did not include the vulnerable code.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | vixie-cron | Not affected | ||
| Red Hat Enterprise Linux 6 | cronie | Not affected | ||
| Red Hat Enterprise Linux 7 | cronie | Not affected | ||
| Red Hat Enterprise Linux 8 | cronie | Not affected |
Показывать по
Дополнительная информация
Статус:
EPSS
7 High
CVSS3
Связанные уязвимости
Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service (use-after-free and daemon crash) because of a force_rescan_user error.
Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service (use-after-free and daemon crash) because of a force_rescan_user error.
Vixie Cron before the 3.0pl1-133 Debian package allows local users to ...
Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service (use-after-free and daemon crash) because of a force_rescan_user error.
Уязвимость функции force_rescan_user демона Cron, связанная с использованием памяти после ее освобождения, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
7 High
CVSS3