Описание
Multiple heap-based buffer overflows in the status_handler function in (1) engine-gpgsm.c and (2) engine-uiserver.c in GPGME before 1.5.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to "different line lengths in a specific order."
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.4.3-0.1ubuntu6 |
| esm-infra-legacy/trusty | released | 1.4.3-0.1ubuntu5.1 |
| lucid | released | 1.2.0-1.2ubuntu1.1 |
| precise | released | 1.2.0-1.4ubuntu2.1 |
| trusty | released | 1.4.3-0.1ubuntu5.1 |
| trusty/esm | released | 1.4.3-0.1ubuntu5.1 |
| upstream | released | 1.5.1 |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
Multiple heap-based buffer overflows in the status_handler function in (1) engine-gpgsm.c and (2) engine-uiserver.c in GPGME before 1.5.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to "different line lengths in a specific order."
Multiple heap-based buffer overflows in the status_handler function in (1) engine-gpgsm.c and (2) engine-uiserver.c in GPGME before 1.5.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to "different line lengths in a specific order."
Multiple heap-based buffer overflows in the status_handler function in ...
Multiple heap-based buffer overflows in the status_handler function in (1) engine-gpgsm.c and (2) engine-uiserver.c in GPGME before 1.5.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to "different line lengths in a specific order."
EPSS
6.8 Medium
CVSS2