CVE-2017-7476

Опубликовано: 02 мая 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 7.5

CVSS3: 9.8

Описание

Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	code not present
cosmic	not-affected	code not present
devel	not-affected	code not present
disco	not-affected	code not present
esm-apps/bionic	not-affected	code not present
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was needed]
precise	ignored	end of life
precise/esm	DNE	precise was needed

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2017-7476

EPSS

Процентиль: 81%

0.01611

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2017-7476

CVSS3: 7.8

redhat

почти 9 лет назад

Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.

CVE-2017-7476

CVSS3: 9.8

nvd

почти 9 лет назад

Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.

CVE-2017-7476

CVSS3: 9.8

debian

почти 9 лет назад

Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ ...

GHSA-m9rq-c483-gg38

CVSS3: 9.8

github

больше 3 лет назад

Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.

EPSS

Процентиль: 81%

0.01611

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2017-7476

Описание

Пакет gnulib

Ссылки на источники

Связанные уязвимости