CVE-2017-1000494

Опубликовано: 03 янв. 2018

Источник: ubuntu

Приоритет: medium

CVSS2: 4.6

CVSS3: 7.8

Описание

Uninitialized stack variable vulnerability in NameValueParserEndElt (upnpreplyparse.c) in miniupnpd < 2.0 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecified other impact

Релиз	Статус	Примечание
artful	released	1.9.20140610-4ubuntu1.1
bionic	released	1.9.20140610-4ubuntu2
cosmic	released	1.9.20140610-4ubuntu2
devel	released	1.9.20140610-4ubuntu2
disco	released	1.9.20140610-4ubuntu2
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [1.6-3ubuntu2.14.04.4]]
esm-infra/bionic	released	1.9.20140610-4ubuntu2
esm-infra/xenial	released	1.9.20140610-2ubuntu2.16.04.2
precise/esm	DNE
trusty	released	1.6-3ubuntu2.14.04.4

Показывать по

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	2.0.20171212-2
cosmic	not-affected	2.0.20171212-2
devel	not-affected	2.0.20171212-2
disco	not-affected	2.0.20171212-2
esm-apps/bionic	not-affected	2.0.20171212-2
esm-apps/xenial	released	1.8.20140523-4.1+deb9u1build0.16.04.1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was needed]
precise/esm	DNE
trusty	ignored	end of standard support

Показывать по

Ссылки на источники

4.6 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

CVE-2017-1000494

CVSS3: 7.8

nvd

около 8 лет назад

CVE-2017-1000494

CVSS3: 7.8

debian

около 8 лет назад

Uninitialized stack variable vulnerability in NameValueParserEndElt (u ...

GHSA-cmwg-g372-6738

CVSS3: 7.8

github

больше 3 лет назад

4.6 Medium

CVSS2

7.8 High

CVSS3

CVE-2017-1000494

Описание

Пакет miniupnpc

Пакет miniupnpd

Ссылки на источники

Связанные уязвимости