CVE-2018-12035

Опубликовано: 15 июн. 2018

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.8

CVSS3: 7.8

Описание

In YARA 3.7.1 and prior, parsing a specially crafted compiled rule file can cause an out of bounds write vulnerability in yr_execute_code in libyara/exec.c.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	ignored	end of standard support, was needs-triage
cosmic	not-affected	3.7.1-3
devel	not-affected	3.7.1-3
disco	not-affected	3.7.1-3
eoan	not-affected	3.7.1-3
esm-apps/bionic	needs-triage
esm-apps/focal	not-affected	3.7.1-3
esm-apps/jammy	not-affected	3.7.1-3
esm-apps/noble	not-affected	3.7.1-3

Показывать по

Ссылки на источники

EPSS

Процентиль: 40%

0.0018

Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

CVE-2018-12035

CVSS3: 7.8

nvd

больше 7 лет назад

In YARA 3.7.1 and prior, parsing a specially crafted compiled rule file can cause an out of bounds write vulnerability in yr_execute_code in libyara/exec.c.

CVE-2018-12035

CVSS3: 7.8

debian

больше 7 лет назад

In YARA 3.7.1 and prior, parsing a specially crafted compiled rule fil ...

GHSA-f8gv-jwf8-mm4p

CVSS3: 7.8

github

больше 3 лет назад

In YARA 3.7.1 and prior, parsing a specially crafted compiled rule file can cause an out of bounds write vulnerability in yr_execute_code in libyara/exec.c.

EPSS

Процентиль: 40%

0.0018

Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3

CVE-2018-12035

Описание

Пакет yara

Ссылки на источники

Связанные уязвимости