CVE-2018-20451

Опубликовано: 25 дек. 2018

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 4.3

CVSS3: 6.5

Описание

The process_file function in reader.c in libdoc through 2017-10-23 has a heap-based buffer over-read that allows attackers to cause a denial of service (application crash) via a crafted file.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
cosmic	ignored	end of life
devel	needs-triage
disco	ignored	end of life
eoan	ignored	end of life
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
esm-apps/xenial	needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 54%

0.00308

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-20451

CVSS3: 6.5

nvd

около 7 лет назад

The process_file function in reader.c in libdoc through 2017-10-23 has a heap-based buffer over-read that allows attackers to cause a denial of service (application crash) via a crafted file.

CVE-2018-20451

CVSS3: 6.5

debian

около 7 лет назад

The process_file function in reader.c in libdoc through 2017-10-23 has ...

GHSA-2wch-pp5g-pc57

CVSS3: 6.5

github

больше 3 лет назад

The process_file function in reader.c in libdoc through 2017-10-23 has a heap-based buffer over-read that allows attackers to cause a denial of service (application crash) via a crafted file.

EPSS

Процентиль: 54%

0.00308

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2018-20451

Описание

Пакет catdoc

Ссылки на источники

Связанные уязвимости