CVE-2022-3715

Опубликовано: 27 окт. 2022

Источник: redhat

CVSS3: 6.6

EPSS Низкий

Описание

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory problems.

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid_parameter_transform. This issue may lead to memory problems.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	bash	Out of support scope
Red Hat Enterprise Linux 7	bash	Not affected
Red Hat Enterprise Linux 8	bash	Not affected
Red Hat Enterprise Linux 9	bash	Fixed	RHSA-2023:0340	23.01.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-119->CWE-787

https://bugzilla.redhat.com/show_bug.cgi?id=2126720bash: a heap-buffer-overflow in valid_parameter_transform

EPSS

Процентиль: 17%

0.00056

Низкий

6.6 Medium

CVSS3

Связанные уязвимости

CVE-2022-3715

CVSS3: 7.8

ubuntu

около 3 лет назад

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory problems.

CVE-2022-3715

CVSS3: 7.8

nvd

около 3 лет назад

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory problems.

CVE-2022-3715

CVSS3: 7.8

msrc

4 месяца назад

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory problems.

CVE-2022-3715

CVSS3: 7.8

debian

около 3 лет назад

A flaw was found in the bash package, where a heap-buffer overflow can ...

RLSA-2023:0340

rocky

около 3 лет назад

Moderate: bash security update

EPSS

Процентиль: 17%

0.00056

Низкий

6.6 Medium

CVSS3