Описание
Integer overflow in the read_string function in libsvn_ra_svn/marshal.c in Apache Subversion 1.9.x before 1.9.3 allows remote attackers to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.9.3-1ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [1.8.8-1ubuntu3.2]] |
| precise | not-affected | 1.6.17dfsg-3ubuntu3.5 |
| trusty | not-affected | 1.8.8-1ubuntu3.2 |
| trusty/esm | DNE | trusty was not-affected [1.8.8-1ubuntu3.2] |
| upstream | released | 1.9.3 |
| vivid | not-affected | 1.8.10-5ubuntu1.1 |
| wily | not-affected | 1.8.13-1ubuntu3 |
Показывать по
Ссылки на источники
EPSS
9 Critical
CVSS2
8.6 High
CVSS3
Связанные уязвимости
Integer overflow in the read_string function in libsvn_ra_svn/marshal.c in Apache Subversion 1.9.x before 1.9.3 allows remote attackers to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read.
Integer overflow in the read_string function in libsvn_ra_svn/marshal.c in Apache Subversion 1.9.x before 1.9.3 allows remote attackers to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read.
Integer overflow in the read_string function in libsvn_ra_svn/marshal. ...
Integer overflow in the read_string function in libsvn_ra_svn/marshal.c in Apache Subversion 1.9.x before 1.9.3 allows remote attackers to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read.
EPSS
9 Critical
CVSS2
8.6 High
CVSS3