CVE-2017-9814

Опубликовано: 17 июл. 2017

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) because of mishandling of an unexpected malloc(0) call.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	ignored	end of standard support, was needs-triage
cosmic	ignored	end of life
devel	not-affected	1.18.0-3build1
disco	ignored	end of life
eoan	ignored	end of life
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was deferred [2020-11-26]]
esm-infra/bionic	needs-triage
esm-infra/focal	needs-triage
esm-infra/xenial	released	1.14.6-1ubuntu0.1~esm1

Показывать по

Ссылки на источники

EPSS

Процентиль: 57%

0.00358

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2017-9814

CVSS3: 3.3

redhat

больше 8 лет назад

cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) because of mishandling of an unexpected malloc(0) call.

CVE-2017-9814

CVSS3: 7.5

nvd

больше 8 лет назад

cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) because of mishandling of an unexpected malloc(0) call.

CVE-2017-9814

CVSS3: 7.5

debian

больше 8 лет назад

cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote atta ...

openSUSE-SU-2020:1003-1

suse-cvrf

больше 5 лет назад

Security update for cairo

openSUSE-SU-2018:1895-1

suse-cvrf

больше 7 лет назад

Security update for cairo

EPSS

Процентиль: 57%

0.00358

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2017-9814

Описание

Пакет cairo

Ссылки на источники

Связанные уязвимости