CVE-2016-8620

Опубликовано: 01 авг. 2018

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 7.5

CVSS3: 6.5

Описание

The 'globbing' feature in curl before version 7.51.0 has a flaw that leads to integer overflow and out-of-bounds read via user controlled input.

Релиз	Статус	Примечание
devel	released	7.50.1-1ubuntu2
esm-infra-legacy/trusty	not-affected	7.35.0-1ubuntu2.10
esm-infra/xenial	not-affected	7.47.0-1ubuntu2.2
precise	not-affected	7.22.0-3ubuntu4.16
precise/esm	not-affected	7.22.0-3ubuntu4.16
trusty	released	7.35.0-1ubuntu2.10
trusty/esm	not-affected	7.35.0-1ubuntu2.10
upstream	released	7.51.0
vivid/stable-phone-overlay	ignored	end of life
vivid/ubuntu-core	released	7.38.0-3ubuntu2.4

Показывать по

Ссылки на источники

EPSS

Процентиль: 67%

0.00546

Низкий

7.5 High

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2016-8620

CVSS3: 6.5

redhat

больше 8 лет назад

The 'globbing' feature in curl before version 7.51.0 has a flaw that leads to integer overflow and out-of-bounds read via user controlled input.

CVE-2016-8620

CVSS3: 6.5

nvd

почти 7 лет назад

The 'globbing' feature in curl before version 7.51.0 has a flaw that leads to integer overflow and out-of-bounds read via user controlled input.

CVE-2016-8620

CVSS3: 6.5

debian

почти 7 лет назад

The 'globbing' feature in curl before version 7.51.0 has a flaw that l ...

GHSA-rrg6-wpjx-p5jf

CVSS3: 9.8

github

около 3 лет назад

The 'globbing' feature in curl before version 7.51.0 has a flaw that leads to integer overflow and out-of-bounds read via user controlled input.

openSUSE-SU-2016:2768-1

suse-cvrf

больше 8 лет назад

Security update for curl

EPSS

Процентиль: 67%

0.00546

Низкий

7.5 High

CVSS2

6.5 Medium

CVSS3

CVE-2016-8620

Описание

Пакет curl

Ссылки на источники

Связанные уязвимости