CVE-2017-5356

Опубликовано: 03 мар. 2017

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

Irssi before 0.8.21 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a string containing a formatting sequence (%[) without a closing bracket (]).

Релиз	Статус	Примечание
devel	released	0.8.20-2ubuntu2
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [0.8.15-5ubuntu3.1]]
esm-infra/xenial	released	0.8.19-1ubuntu1.3
precise	released	0.8.15-4ubuntu3.1
trusty	released	0.8.15-5ubuntu3.1
trusty/esm	DNE	trusty was released [0.8.15-5ubuntu3.1]
upstream	released	0.8.21-1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	released	0.8.19-1ubuntu1.3

Показывать по

Ссылки на источники

EPSS

Процентиль: 86%

0.02755

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2017-5356

CVSS3: 5.9

redhat

около 9 лет назад

Irssi before 0.8.21 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a string containing a formatting sequence (%[) without a closing bracket (]).

CVE-2017-5356

CVSS3: 7.5

nvd

почти 9 лет назад

Irssi before 0.8.21 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a string containing a formatting sequence (%[) without a closing bracket (]).

CVE-2017-5356

CVSS3: 7.5

debian

почти 9 лет назад

Irssi before 0.8.21 allows remote attackers to cause a denial of servi ...

GHSA-rxfr-9cmv-jwxm

CVSS3: 7.5

github

больше 3 лет назад

Irssi before 0.8.21 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a string containing a formatting sequence (%[) without a closing bracket (]).

EPSS

Процентиль: 86%

0.02755

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2017-5356

Описание

Пакет irssi

Ссылки на источники

Связанные уязвимости