Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-8041

Опубликовано: 09 нояб. 2015
Источник: ubuntu
Приоритет: low
CVSS2: 5

Описание

Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and wpa_supplicant before 2.5 allow remote attackers to cause a denial of service (process crash or infinite loop) via a large payload length field value in an (1) WPS or (2) P2P NFC NDEF record, which triggers an out-of-bounds read.

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

not-affected

CONFIG_WPS_NFC disabled
trusty

DNE

trusty/esm

DNE

upstream

needs-triage

vivid

DNE

vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

DNE

Показывать по

РелизСтатусПримечание
devel

released

2.4-0ubuntu5
esm-infra-legacy/trusty

not-affected

esm-infra/xenial

released

2.4-0ubuntu5
precise

DNE

trusty

not-affected

trusty/esm

not-affected

upstream

released

2.3-2.2
vivid

not-affected

CONFIG_WPS_NFC disabled
vivid/stable-phone-overlay

not-affected

CONFIG_WPS_NFC disabled
vivid/ubuntu-core

not-affected

CONFIG_WPS_NFC disabled

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

not-affected

CONFIG_WPS_NFC disabled
trusty

DNE

trusty/esm

DNE

upstream

released

2.5
vivid

DNE

vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

DNE

Показывать по

Ссылки на источники

5 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2015-8041

redhat
больше 10 лет назад

Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and wpa_supplicant before 2.5 allow remote attackers to cause a denial of service (process crash or infinite loop) via a large payload length field value in an (1) WPS or (2) P2P NFC NDEF record, which triggers an out-of-bounds read.

nvd логотип

CVE-2015-8041

nvd
около 10 лет назад

Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and wpa_supplicant before 2.5 allow remote attackers to cause a denial of service (process crash or infinite loop) via a large payload length field value in an (1) WPS or (2) P2P NFC NDEF record, which triggers an out-of-bounds read.

debian логотип

CVE-2015-8041

debian
около 10 лет назад

Multiple integer overflows in the NDEF record parser in hostapd before ...

github логотип

GHSA-c6pq-gj5g-cpf8

github
больше 3 лет назад

Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and wpa_supplicant before 2.5 allow remote attackers to cause a denial of service (process crash or infinite loop) via a large payload length field value in an (1) WPS or (2) P2P NFC NDEF record, which triggers an out-of-bounds read.

fstec логотип

BDU:2015-12120

fstec
около 10 лет назад

Уязвимости клиента защищённого доступа Wi-Fi WPA Supplicant, программной точки доступа Jouni Malinen Hostapd и операционной системы openSUSE, позволяющие нарушителю вызвать отказ в обслуживании

5 Medium

CVSS2

Уязвимость CVE-2015-8041