Описание
Heap-based buffer overflow in the parse_packet function in network.c in collectd before 5.4.3 and 5.x before 5.5.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted network packet.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 5.7.2-2ubuntu1 |
| cosmic | not-affected | 5.7.2-2ubuntu1 |
| devel | not-affected | 5.7.2-2ubuntu1 |
| disco | not-affected | 5.7.2-2ubuntu1 |
| eoan | not-affected | 5.7.2-2ubuntu1 |
| esm-apps/bionic | not-affected | 5.7.2-2ubuntu1 |
| esm-apps/focal | not-affected | 5.7.2-2ubuntu1 |
| esm-apps/xenial | released | 5.5.1-1ubuntu0.1~esm1 |
| esm-infra-legacy/trusty | released | 5.4.0-3ubuntu2.2+esm1 |
Показывать по
6.4 Medium
CVSS2
9.1 Critical
CVSS3
Связанные уязвимости
Heap-based buffer overflow in the parse_packet function in network.c in collectd before 5.4.3 and 5.x before 5.5.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted network packet.
Heap-based buffer overflow in the parse_packet function in network.c in collectd before 5.4.3 and 5.x before 5.5.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted network packet.
Heap-based buffer overflow in the parse_packet function in network.c i ...
Heap-based buffer overflow in the parse_packet function in network.c in collectd before 5.4.3 and 5.x before 5.5.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted network packet.
6.4 Medium
CVSS2
9.1 Critical
CVSS3