CVE-2017-10672

Опубликовано: 29 июн. 2017

Источник: ubuntu

Приоритет: medium

EPSS Средний

CVSS2: 7.5

CVSS3: 9.8

Описание

Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call.

Релиз	Статус	Примечание
artful	released	2.0128+dfsg-3ubuntu0.1
devel	released	2.0128+dfsg-5
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [2.0108+dfsg-1ubuntu0.2]]
esm-infra/xenial	released	2.0123+dfsg-1ubuntu0.1
precise/esm	DNE
trusty	released	2.0108+dfsg-1ubuntu0.2
trusty/esm	DNE	trusty was released [2.0108+dfsg-1ubuntu0.2]
upstream	released	2.0128+dfsg-4
vivid/ubuntu-core	DNE
xenial	released	2.0123+dfsg-1ubuntu0.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 94%

0.12353

Средний

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2017-10672

CVSS3: 5.6

redhat

больше 8 лет назад

Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call.

CVE-2017-10672

CVSS3: 9.8

nvd

больше 8 лет назад

Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call.

CVE-2017-10672

CVSS3: 9.8

debian

больше 8 лет назад

Use-after-free in the XML-LibXML module through 2.0129 for Perl allows ...

openSUSE-SU-2018:0153-1

suse-cvrf

около 8 лет назад

Security update for perl-XML-LibXML

SUSE-SU-2018:0170-1

suse-cvrf

около 8 лет назад

Security update for perl-XML-LibXML

EPSS

Процентиль: 94%

0.12353

Средний

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2017-10672

Описание

Пакет libxml-libxml-perl

Ссылки на источники

Связанные уязвимости