CVE-2017-7521

Опубликовано: 27 июн. 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.3

CVSS3: 5.9

Описание

OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension().

Релиз	Статус	Примечание
artful	released	2.4.0-5ubuntu2
devel	released	2.4.0-5ubuntu2
esm-infra-legacy/trusty	not-affected	2.3.2-7ubuntu3.2
esm-infra/xenial	not-affected	2.3.10-1ubuntu2.1
precise/esm	not-affected	code not present
trusty	released	2.3.2-7ubuntu3.2
trusty/esm	not-affected	2.3.2-7ubuntu3.2
upstream	released	2.4.3, 2.3.17
vivid/ubuntu-core	DNE
xenial	released	2.3.10-1ubuntu2.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 66%

0.00523

Низкий

4.3 Medium

CVSS2

5.9 Medium

CVSS3

Связанные уязвимости

CVE-2017-7521

CVSS3: 7.5

redhat

почти 8 лет назад

OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension().

CVE-2017-7521

CVSS3: 5.9

nvd

почти 8 лет назад

OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension().

CVE-2017-7521

CVSS3: 5.9

debian

почти 8 лет назад

OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remo ...

GHSA-mmxr-6344-9fv5

CVSS3: 5.9

github

около 3 лет назад

OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension().

openSUSE-SU-2017:1680-1

suse-cvrf

почти 8 лет назад

Security update for openvpn

EPSS

Процентиль: 66%

0.00523

Низкий

4.3 Medium

CVSS2

5.9 Medium

CVSS3

CVE-2017-7521

Описание

Пакет openvpn

Ссылки на источники

Связанные уязвимости