Описание
procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer overflow. Inbuilt protection in ps maps a guard page at the end of the overflowed buffer, ensuring that the impact of this flaw is limited to a crash (temporary denial of service).
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 2:3.3.12-1ubuntu2.1 |
| bionic | released | 2:3.3.12-3ubuntu1.1 |
| devel | released | 2:3.3.15-2ubuntu1 |
| esm-infra-legacy/trusty | released | 1:3.3.9-1ubuntu2.3 |
| esm-infra/bionic | released | 2:3.3.12-3ubuntu1.1 |
| esm-infra/xenial | released | 2:3.3.10-4ubuntu2.4 |
| precise/esm | not-affected | 1:3.2.8-11ubuntu6.6 |
| trusty | released | 1:3.3.9-1ubuntu2.3 |
| trusty/esm | released | 1:3.3.9-1ubuntu2.3 |
| upstream | released | 3.3.15 |
Показывать по
EPSS
5 Medium
CVSS2
3.9 Low
CVSS3
Связанные уязвимости
procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer overflow. Inbuilt protection in ps maps a guard page at the end of the overflowed buffer, ensuring that the impact of this flaw is limited to a crash (temporary denial of service).
procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer overflow. Inbuilt protection in ps maps a guard page at the end of the overflowed buffer, ensuring that the impact of this flaw is limited to a crash (temporary denial of service).
procps-ng before version 3.3.15 is vulnerable to a denial of service i ...
procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer overflow. Inbuilt protection in ps maps a guard page at the end of the overflowed buffer, ensuring that the impact of this flaw is limited to a crash (temporary denial of service).
Уязвимость набора утилит командной строки procps-ng, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю повысить свои привилегии
EPSS
5 Medium
CVSS2
3.9 Low
CVSS3