CVE-2017-8843

Опубликовано: 08 мая 2017

Источник: ubuntu

Приоритет: low

CVSS2: 4.3

CVSS3: 5.5

Описание

The join_pthread function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted archive.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	released	0.631-1+deb9u1build0.18.04.1
cosmic	not-affected	0.631+git180528-1
devel	not-affected	0.631+git180528-1
disco	not-affected	0.631+git180528-1
eoan	not-affected	0.631+git180528-1
esm-apps/bionic	released	0.631-1+deb9u1build0.18.04.1
esm-apps/focal	not-affected	0.631+git180528-1
esm-apps/jammy	not-affected	0.631+git180528-1
esm-apps/noble	not-affected	0.631+git180528-1

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-8843

CVSS3: 5.5

nvd

больше 8 лет назад

The join_pthread function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted archive.

CVE-2017-8843

CVSS3: 5.5

debian

больше 8 лет назад

The join_pthread function in stream.c in liblrzip.so in lrzip 0.631 al ...

GHSA-52fx-69c2-5gh6

CVSS3: 5.5

github

больше 3 лет назад

The join_pthread function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted archive.

4.3 Medium

CVSS2

5.5 Medium

CVSS3

CVE-2017-8843

Описание

Пакет lrzip

Ссылки на источники

Связанные уязвимости