CVE-2022-35019

Опубликовано: 29 авг. 2022

Источник: redhat

CVSS3: 5.5

EPSS Низкий

Описание

Advancecomp v2.3 was discovered to contain a segmentation fault.

A segmentation fault was found in advancecomp in the mng_read_delta() function of the mng.c file. The flaw occurs due to invalid WRITE memory access. This flaw allows an attacker to cause a crash by tricking a user into opening a malformed file, leading to a denial of service attack.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 7	advancecomp	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-119

https://bugzilla.redhat.com/show_bug.cgi?id=2127389advancecomp: SEGV via invalid write memory access

EPSS

Процентиль: 39%

0.00178

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2022-35019

CVSS3: 5.5

ubuntu

больше 3 лет назад

Advancecomp v2.3 was discovered to contain a segmentation fault.

CVE-2022-35019

CVSS3: 5.5

nvd

больше 3 лет назад

Advancecomp v2.3 was discovered to contain a segmentation fault.

CVE-2022-35019

CVSS3: 5.5

debian

больше 3 лет назад

Advancecomp v2.3 was discovered to contain a segmentation fault.

GHSA-jrvp-mrj4-gx7v

CVSS3: 5.5

github

больше 3 лет назад

Advancecomp v2.3 was discovered to contain a segmentation fault.

EPSS

Процентиль: 39%

0.00178

Низкий

5.5 Medium

CVSS3