CVE-2017-10685

Опубликовано: 29 июн. 2017

Источник: ubuntu

Приоритет: negligible

CVSS2: 7.5

CVSS3: 9.8

Описание

In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	6.1-1ubuntu1
cosmic	not-affected	6.1-1ubuntu1
devel	not-affected	6.1-1ubuntu1
disco	not-affected	6.1-1ubuntu1
eoan	not-affected	6.1-1ubuntu1
esm-infra-legacy/trusty	released	5.9+20140118-1ubuntu1+esm1
esm-infra/bionic	not-affected	6.1-1ubuntu1
esm-infra/focal	not-affected	6.1-1ubuntu1
esm-infra/xenial	released	6.0+20160213-1ubuntu1+esm1

Показывать по

Ссылки на источники

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2017-10685

redhat

больше 8 лет назад

In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.

CVE-2017-10685

CVSS3: 9.8

nvd

больше 8 лет назад

In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.

CVE-2017-10685

CVSS3: 9.8

debian

больше 8 лет назад

In ncurses 6.0, there is a format string vulnerability in the fmt_entr ...

GHSA-67w6-7r3q-87w7

CVSS3: 9.8

github

больше 3 лет назад

In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.

openSUSE-SU-2017:1882-1

suse-cvrf

больше 8 лет назад

Recommended update for ncurses

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2017-10685

Описание

Пакет ncurses

Ссылки на источники

Связанные уязвимости