Описание
Apache Portable Runtime Utility (APR-util) 1.6.0 and prior fail to validate the integrity of SDBM database files used by apr_sdbm*() functions, resulting in a possible out of bound read access. A local user with write access to the database can make a program or process using these functions crash, and cause a denial of service.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 1.6.1-2 |
| cosmic | not-affected | 1.6.1-2 |
| devel | not-affected | 1.6.1-2 |
| disco | not-affected | 1.6.1-2 |
| eoan | not-affected | 1.6.1-2 |
| esm-infra-legacy/trusty | released | 1.5.3-1ubuntu0.1~esm1 |
| esm-infra/bionic | not-affected | 1.6.1-2 |
| esm-infra/focal | not-affected | 1.6.1-2 |
| esm-infra/xenial | released | 1.5.4-1ubuntu0.1~esm1 |
Показывать по
EPSS
1.9 Low
CVSS2
4.7 Medium
CVSS3
Связанные уязвимости
Apache Portable Runtime Utility (APR-util) 1.6.0 and prior fail to validate the integrity of SDBM database files used by apr_sdbm*() functions, resulting in a possible out of bound read access. A local user with write access to the database can make a program or process using these functions crash, and cause a denial of service.
Apache Portable Runtime Utility (APR-util) 1.6.0 and prior fail to validate the integrity of SDBM database files used by apr_sdbm*() functions, resulting in a possible out of bound read access. A local user with write access to the database can make a program or process using these functions crash, and cause a denial of service.
Apache Portable Runtime Utility (APR-util) 1.6.0 and prior fail to val ...
EPSS
1.9 Low
CVSS2
4.7 Medium
CVSS3