CVE-2017-9929

Опубликовано: 26 июн. 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.3

CVSS3: 5.5

Описание

In lrzip 0.631, a stack buffer overflow was found in the function get_fileinfo in lrzip.c:1074, which allows attackers to cause a denial of service via a crafted file.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	released	0.631-1+deb9u1build0.18.04.1
cosmic	not-affected	0.631+git180528-1
devel	not-affected	0.631+git180528-1
disco	not-affected	0.631+git180528-1
eoan	not-affected	0.631+git180528-1
esm-apps/bionic	released	0.631-1+deb9u1build0.18.04.1
esm-apps/focal	not-affected	0.631+git180528-1
esm-apps/jammy	not-affected	0.631+git180528-1
esm-apps/xenial	released	0.621-1ubuntu0.1~esm1

Показывать по

Ссылки на источники

EPSS

Процентиль: 62%

0.00421

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-9929

CVSS3: 5.5

nvd

больше 8 лет назад

In lrzip 0.631, a stack buffer overflow was found in the function get_fileinfo in lrzip.c:1074, which allows attackers to cause a denial of service via a crafted file.

CVE-2017-9929

CVSS3: 5.5

debian

больше 8 лет назад

In lrzip 0.631, a stack buffer overflow was found in the function get_ ...

GHSA-2xv7-rgc5-4ccg

CVSS3: 5.5

github

больше 3 лет назад

In lrzip 0.631, a stack buffer overflow was found in the function get_fileinfo in lrzip.c:1074, which allows attackers to cause a denial of service via a crafted file.

EPSS

Процентиль: 62%

0.00421

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

CVE-2017-9929

Описание

Пакет lrzip

Ссылки на источники

Связанные уязвимости