Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-17432

Опубликовано: 06 дек. 2017
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 7.8
CVSS3: 7.5

Описание

OpenAFS 1.x before 1.6.22 does not properly validate Rx ack packets, which allows remote attackers to cause a denial of service (system crash or application crash) via crafted fields, as demonstrated by an integer underflow and assertion failure for a small MTU value.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

1.8.0~pre5-1
cosmic

not-affected

1.8.0~pre5-1
devel

not-affected

1.8.0~pre5-1
disco

not-affected

1.8.0~pre5-1
eoan

not-affected

1.8.0~pre5-1
esm-apps/bionic

not-affected

1.8.0~pre5-1
esm-apps/focal

not-affected

1.8.0~pre5-1
esm-apps/jammy

not-affected

1.8.0~pre5-1
esm-apps/noble

not-affected

1.8.0~pre5-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 79%
0.01235
Низкий

7.8 High

CVSS2

7.5 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2017-17432

CVSS3: 7.5
nvd
около 8 лет назад

OpenAFS 1.x before 1.6.22 does not properly validate Rx ack packets, which allows remote attackers to cause a denial of service (system crash or application crash) via crafted fields, as demonstrated by an integer underflow and assertion failure for a small MTU value.

debian логотип

CVE-2017-17432

CVSS3: 7.5
debian
около 8 лет назад

OpenAFS 1.x before 1.6.22 does not properly validate Rx ack packets, w ...

github логотип

GHSA-f7jc-5gw7-phrf

CVSS3: 7.5
github
больше 3 лет назад

OpenAFS 1.x before 1.6.22 does not properly validate Rx ack packets, which allows remote attackers to cause a denial of service (system crash or application crash) via crafted fields, as demonstrated by an integer underflow and assertion failure for a small MTU value.

EPSS

Процентиль: 79%
0.01235
Низкий

7.8 High

CVSS2

7.5 High

CVSS3