Описание
Integer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to cause a denial of service (crash) via a malformed RFC1035-encoded domain name, which triggers an out-of-bounds heap write.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 1:1.27.2-1ubuntu3 |
| cosmic | not-affected | 1:1.27.2-1ubuntu3 |
| devel | not-affected | 1:1.27.2-1ubuntu3 |
| disco | not-affected | 1:1.27.2-1ubuntu3 |
| eoan | not-affected | 1:1.27.2-1ubuntu3 |
| esm-infra-legacy/trusty | released | 1:1.21.0-1ubuntu1.4 |
| esm-infra/bionic | not-affected | 1:1.27.2-1ubuntu3 |
| esm-infra/focal | not-affected | 1:1.27.2-1ubuntu3 |
| esm-infra/xenial | released | 1:1.22.0-15ubuntu1.4 |
Показывать по
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
Integer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to cause a denial of service (crash) via a malformed RFC1035-encoded domain name, which triggers an out-of-bounds heap write.
Integer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to cause a denial of service (crash) via a malformed RFC1035-encoded domain name, which triggers an out-of-bounds heap write.
Integer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 ...
Integer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to cause a denial of service (crash) via a malformed RFC1035-encoded domain name, which triggers an out-of-bounds heap write.
Уязвимость DHCP клиента набора UNIX-утилит командной строки BusyBox, связанная с целочисленным переполнением значения, позволяющая нарушителю вызвать отказ в обслуживании
5 Medium
CVSS2
7.5 High
CVSS3