Описание
OCaml before 4.03.0 does not properly handle sign extensions, which allows remote attackers to conduct buffer overflow attacks or obtain sensitive information as demonstrated by a long string to the String.copy function.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 4.02.3-9 |
| cosmic | not-affected | 4.02.3-9 |
| devel | not-affected | 4.02.3-9 |
| disco | not-affected | 4.02.3-9 |
| eoan | not-affected | 4.02.3-9 |
| esm-apps/bionic | not-affected | 4.02.3-9 |
| esm-apps/focal | not-affected | 4.02.3-9 |
| esm-apps/jammy | not-affected | 4.02.3-9 |
| esm-apps/xenial | released | 4.02.3-5ubuntu2+esm1 |
Показывать по
6.4 Medium
CVSS2
9.1 Critical
CVSS3
Связанные уязвимости
OCaml before 4.03.0 does not properly handle sign extensions, which allows remote attackers to conduct buffer overflow attacks or obtain sensitive information as demonstrated by a long string to the String.copy function.
OCaml before 4.03.0 does not properly handle sign extensions, which allows remote attackers to conduct buffer overflow attacks or obtain sensitive information as demonstrated by a long string to the String.copy function.
OCaml before 4.03.0 does not properly handle sign extensions, which al ...
6.4 Medium
CVSS2
9.1 Critical
CVSS3