Описание
UDisks 2.8.0 has a format string vulnerability in udisks_log in udiskslogging.c, allowing attackers to obtain sensitive information (stack contents), cause a denial of service (memory corruption), or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n substrings.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.7.6-3ubuntu0.2 |
| devel | released | 2.7.6-3ubuntu3 |
| esm-infra-legacy/trusty | not-affected | code not present |
| esm-infra/bionic | released | 2.7.6-3ubuntu0.2 |
| esm-infra/xenial | not-affected | code not present |
| precise/esm | DNE | |
| trusty | not-affected | code not present |
| trusty/esm | not-affected | code not present |
| upstream | needs-triage | |
| xenial | not-affected | code not present |
Показывать по
EPSS
4.6 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
UDisks 2.8.0 has a format string vulnerability in udisks_log in udiskslogging.c, allowing attackers to obtain sensitive information (stack contents), cause a denial of service (memory corruption), or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n substrings.
UDisks 2.8.0 has a format string vulnerability in udisks_log in udiskslogging.c, allowing attackers to obtain sensitive information (stack contents), cause a denial of service (memory corruption), or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n substrings.
UDisks 2.8.0 has a format string vulnerability in udisks_log in udisks ...
EPSS
4.6 Medium
CVSS2
7.8 High
CVSS3