CVE-2013-5914

Опубликовано: 26 окт. 2013

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.8

Описание

Buffer overflow in the ssl_read_record function in ssl_tls.c in PolarSSL before 1.1.8, when using TLS 1.1, might allow remote attackers to execute arbitrary code via a long packet.

Релиз	Статус	Примечание
devel	not-affected	1.2.8-2
esm-apps/xenial	not-affected	1.2.8-2
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	1.2.0-1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [1.2.8-2]]
lucid	ignored	end of life
precise	ignored	end of life
precise/esm	DNE	precise was needed
quantal	ignored	end of life
raring	ignored	end of life
saucy	not-affected	1.2.8-2
trusty	not-affected	1.2.8-2
trusty/esm	DNE	trusty was not-affected [1.2.8-2]

Показывать по

Ссылки на источники

EPSS

Процентиль: 86%

0.02853

Низкий

6.8 Medium

CVSS2

Связанные уязвимости

CVE-2013-5914

nvd

больше 12 лет назад

Buffer overflow in the ssl_read_record function in ssl_tls.c in PolarSSL before 1.1.8, when using TLS 1.1, might allow remote attackers to execute arbitrary code via a long packet.

CVE-2013-5914

debian

больше 12 лет назад

Buffer overflow in the ssl_read_record function in ssl_tls.c in PolarS ...

GHSA-vpwv-hwrv-72hw

github

больше 3 лет назад

Buffer overflow in the ssl_read_record function in ssl_tls.c in PolarSSL before 1.1.8, when using TLS 1.1, might allow remote attackers to execute arbitrary code via a long packet.

EPSS

Процентиль: 86%

0.02853

Низкий

6.8 Medium

CVSS2

CVE-2013-5914

Описание

Пакет mbedtls

Пакет polarssl

Ссылки на источники

Связанные уязвимости