CVE-2017-7854

Опубликовано: 13 апр. 2017

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 4.3

CVSS3: 5.5

Описание

The consume_init_expr function in wasm.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembly file.

Релиз	Статус	Примечание
devel	not-affected
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [code not present]]
precise	not-affected	code not present
trusty	not-affected	code not present
trusty/esm	DNE	trusty was not-affected [code not present]
upstream	needs-triage
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	not-affected	code not present

Показывать по

Ссылки на источники

EPSS

Процентиль: 49%

0.00256

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-7854

CVSS3: 5.5

nvd

почти 9 лет назад

The consume_init_expr function in wasm.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembly file.

CVE-2017-7854

CVSS3: 5.5

debian

почти 9 лет назад

The consume_init_expr function in wasm.c in radare2 1.3.0 allows remot ...

GHSA-2p6g-cq2j-fghg

CVSS3: 5.5

github

больше 3 лет назад

The consume_init_expr function in wasm.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembly file.

EPSS

Процентиль: 49%

0.00256

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

CVE-2017-7854

Описание

Пакет radare2

Ссылки на источники

Связанные уязвимости