Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-9022

Опубликовано: 08 июн. 2017
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5
CVSS3: 7.5

Описание

The gmp plugin in strongSwan before 5.5.3 does not properly validate RSA public keys before calling mpz_powm_sec, which allows remote peers to cause a denial of service (floating point exception and process crash) via a crafted certificate.

РелизСтатусПримечание
devel

released

5.5.1-4ubuntu1
esm-infra-legacy/trusty

released

5.1.2-0ubuntu2.6
esm-infra/xenial

released

5.3.5-1ubuntu3.3
precise/esm

DNE

trusty

released

5.1.2-0ubuntu2.6
trusty/esm

released

5.1.2-0ubuntu2.6
upstream

needs-triage

vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

released

5.3.5-1ubuntu3.3

Показывать по

Ссылки на источники

EPSS

Процентиль: 77%
0.01034
Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-9022

CVSS3: 5.9
redhat
больше 8 лет назад

The gmp plugin in strongSwan before 5.5.3 does not properly validate RSA public keys before calling mpz_powm_sec, which allows remote peers to cause a denial of service (floating point exception and process crash) via a crafted certificate.

nvd логотип

CVE-2017-9022

CVSS3: 7.5
nvd
больше 8 лет назад

The gmp plugin in strongSwan before 5.5.3 does not properly validate RSA public keys before calling mpz_powm_sec, which allows remote peers to cause a denial of service (floating point exception and process crash) via a crafted certificate.

debian логотип

CVE-2017-9022

CVSS3: 7.5
debian
больше 8 лет назад

The gmp plugin in strongSwan before 5.5.3 does not properly validate R ...

github логотип

GHSA-229r-rxf9-m7pj

CVSS3: 7.5
github
больше 3 лет назад

The gmp plugin in strongSwan before 5.5.3 does not properly validate RSA public keys before calling mpz_powm_sec, which allows remote peers to cause a denial of service (floating point exception and process crash) via a crafted certificate.

suse-cvrf логотип

SUSE-SU-2017:1473-1

suse-cvrf
больше 8 лет назад

Security update for strongswan

EPSS

Процентиль: 77%
0.01034
Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Уязвимость CVE-2017-9022