CVE-2017-7609

Опубликовано: 09 апр. 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.3

CVSS3: 5.5

Описание

elf_compress.c in elfutils 0.168 does not validate the zlib compression factor, which allows remote attackers to cause a denial of service (memory consumption) via a crafted ELF file.

Релиз	Статус	Примечание
artful	released	0.170-0.1
bionic	released	0.170-0.4
devel	released	0.170-0.4
esm-infra-legacy/trusty	not-affected	0.158-0ubuntu5.2
esm-infra/bionic	released	0.170-0.4
esm-infra/xenial	released	0.165-3ubuntu1.1
precise	ignored	end of life
precise/esm	not-affected
trusty	not-affected	0.158-0ubuntu5.2
trusty/esm	not-affected	0.158-0ubuntu5.2

Показывать по

Ссылки на источники

EPSS

Процентиль: 64%

0.00477

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-7609

CVSS3: 3.3

redhat

почти 9 лет назад

elf_compress.c in elfutils 0.168 does not validate the zlib compression factor, which allows remote attackers to cause a denial of service (memory consumption) via a crafted ELF file.

CVE-2017-7609

CVSS3: 5.5

nvd

почти 9 лет назад

elf_compress.c in elfutils 0.168 does not validate the zlib compression factor, which allows remote attackers to cause a denial of service (memory consumption) via a crafted ELF file.

CVE-2017-7609

CVSS3: 5.5

debian

почти 9 лет назад

elf_compress.c in elfutils 0.168 does not validate the zlib compressio ...

GHSA-5q28-cp33-8xjc

CVSS3: 5.5

github

больше 3 лет назад

elf_compress.c in elfutils 0.168 does not validate the zlib compression factor, which allows remote attackers to cause a denial of service (memory consumption) via a crafted ELF file.

openSUSE-SU-2019:1590-1

suse-cvrf

больше 6 лет назад

Security update for elfutils

EPSS

Процентиль: 64%

0.00477

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

CVE-2017-7609

Описание

Пакет elfutils

Ссылки на источники

Связанные уязвимости