Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-1000409

Опубликовано: 01 фев. 2018
Источник: ubuntu
Приоритет: low
CVSS2: 6.9
CVSS3: 7

Описание

A buffer overflow in glibc 2.5 (released on September 29, 2006) and can be triggered through the LD_LIBRARY_PATH environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366.

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

released

2.19-0ubuntu6.14
esm-infra/focal

DNE

focal

DNE

groovy

DNE

Показывать по

РелизСтатусПримечание
artful

released

2.26-0ubuntu2.1
bionic

not-affected

2.27-3ubuntu1
cosmic

not-affected

2.27-3ubuntu1
devel

not-affected

2.27-3ubuntu1
disco

not-affected

2.27-3ubuntu1
eoan

not-affected

2.27-3ubuntu1
esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

2.27-3ubuntu1
esm-infra/focal

not-affected

2.27-3ubuntu1
esm-infra/xenial

released

2.23-0ubuntu10

Показывать по

Ссылки на источники

6.9 Medium

CVSS2

7 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-1000409

CVSS3: 4.7
redhat
около 8 лет назад

A buffer overflow in glibc 2.5 (released on September 29, 2006) and can be triggered through the LD_LIBRARY_PATH environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366.

nvd логотип

CVE-2017-1000409

CVSS3: 7
nvd
около 8 лет назад

A buffer overflow in glibc 2.5 (released on September 29, 2006) and can be triggered through the LD_LIBRARY_PATH environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366.

debian логотип

CVE-2017-1000409

CVSS3: 7
debian
около 8 лет назад

A buffer overflow in glibc 2.5 (released on September 29, 2006) and ca ...

github логотип

GHSA-6rpv-6r2m-9c95

CVSS3: 7
github
больше 3 лет назад

A buffer overflow in glibc 2.5 (released on September 29, 2006) and can be triggered through the LD_LIBRARY_PATH environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366.

fstec логотип

BDU:2022-05862

CVSS3: 7
fstec
около 8 лет назад

Уязвимость переменной среды LD_LIBRARY_PATH системной библиотеки GNU C Library, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании

6.9 Medium

CVSS2

7 High

CVSS3