CVE-2016-2090

Опубликовано: 13 янв. 2017

Источник: ubuntu

Приоритет: low

CVSS2: 7.5

CVSS3: 9.8

Описание

Off-by-one vulnerability in the fgetwln function in libbsd before 0.8.2 allows attackers to have unspecified impact via unknown vectors, which trigger a heap-based buffer overflow.

Релиз	Статус	Примечание
artful	not-affected	0.8.2-1
bionic	not-affected	0.8.2-1
cosmic	not-affected	0.8.2-1
devel	not-affected	0.8.2-1
disco	not-affected	0.8.2-1
eoan	not-affected	0.8.2-1
esm-infra-legacy/trusty	released	0.6.0-2ubuntu1+esm1
esm-infra/bionic	not-affected	0.8.2-1
esm-infra/xenial	not-affected	0.8.2-1
precise	not-affected	code not present

Показывать по

Ссылки на источники

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2016-2090

CVSS3: 9.8

nvd

около 9 лет назад

Off-by-one vulnerability in the fgetwln function in libbsd before 0.8.2 allows attackers to have unspecified impact via unknown vectors, which trigger a heap-based buffer overflow.

CVE-2016-2090

CVSS3: 9.8

debian

около 9 лет назад

Off-by-one vulnerability in the fgetwln function in libbsd before 0.8. ...

GHSA-q44v-89pv-h73p

CVSS3: 9.8

github

больше 3 лет назад

Off-by-one vulnerability in the fgetwln function in libbsd before 0.8.2 allows attackers to have unspecified impact via unknown vectors, which trigger a heap-based buffer overflow.

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2016-2090

Описание

Пакет libbsd

Ссылки на источники

Связанные уязвимости