CVE-2014-9474

Опубликовано: 10 окт. 2017

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 7.5

CVSS3: 9.8

Описание

Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpn_set_str.

Релиз	Статус	Примечание
artful	not-affected	3.1.2-2
bionic	not-affected	3.1.2-2
cosmic	not-affected	3.1.2-2
devel	not-affected	3.1.2-2
disco	not-affected	3.1.2-2
eoan	not-affected	3.1.2-2
esm-infra-legacy/trusty	needed
esm-infra/bionic	not-affected	3.1.2-2
esm-infra/focal	not-affected	3.1.2-2
esm-infra/xenial	not-affected	3.1.2-2

Показывать по

Ссылки на источники

EPSS

Процентиль: 90%

0.06126

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2014-9474

redhat

почти 12 лет назад

Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpn_set_str.

CVE-2014-9474

CVSS3: 9.8

nvd

около 8 лет назад

Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpn_set_str.

CVE-2014-9474

CVSS3: 9.8

debian

около 8 лет назад

Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2- ...

GHSA-8r23-r9vm-pp93

CVSS3: 9.8

github

больше 3 лет назад

Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpn_set_str.

ELSA-2025-9332

oracle-oval

4 месяца назад

ELSA-2025-9332: mpfr security update (IMPORTANT)

EPSS

Процентиль: 90%

0.06126

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2014-9474

Описание

Пакет mpfr4

Ссылки на источники

Связанные уязвимости