Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-5923

Опубликовано: 03 апр. 2017
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5
CVSS3: 7.5

Описание

libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted rule that is mishandled in the yara_yyparse function.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

3.5.0+dfsg-9
cosmic

not-affected

3.5.0+dfsg-9
devel

not-affected

3.5.0+dfsg-9
disco

not-affected

3.5.0+dfsg-9
eoan

not-affected

3.5.0+dfsg-9
esm-apps/bionic

not-affected

3.5.0+dfsg-9
esm-apps/focal

not-affected

3.5.0+dfsg-9
esm-apps/jammy

not-affected

3.5.0+dfsg-9
esm-apps/noble

not-affected

3.5.0+dfsg-9

Показывать по

Ссылки на источники

EPSS

Процентиль: 73%
0.00787
Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2017-5923

CVSS3: 7.5
nvd
почти 9 лет назад

libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted rule that is mishandled in the yara_yyparse function.

debian логотип

CVE-2017-5923

CVSS3: 7.5
debian
почти 9 лет назад

libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a den ...

github логотип

GHSA-x9r6-fxx3-q7m8

CVSS3: 7.5
github
больше 3 лет назад

libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted rule that is mishandled in the yara_yyparse function.

EPSS

Процентиль: 73%
0.00787
Низкий

5 Medium

CVSS2

7.5 High

CVSS3