CVE-2018-7436

Опубликовано: 23 фев. 2018

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.8

CVSS3: 8.8

Описание

An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parse_SST function.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	1.0.5-1
devel	not-affected	1.0.5-3
esm-apps/bionic	not-affected	1.0.5-1
esm-apps/xenial	released	1.0.2-1ubuntu0.1
esm-infra-legacy/trusty	released	1.0.0g-1ubuntu0.14.04.3
precise/esm	DNE
trusty	released	1.0.0g-1ubuntu0.14.04.3
trusty/esm	released	1.0.0g-1ubuntu0.14.04.3
upstream	released	1.0.5-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 73%

0.00771

Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2018-7436

CVSS3: 4.3

redhat

почти 8 лет назад

An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parse_SST function.

CVE-2018-7436

CVSS3: 8.8

nvd

почти 8 лет назад

An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parse_SST function.

CVE-2018-7436

CVSS3: 8.8

debian

почти 8 лет назад

An issue was discovered in FreeXL before 1.0.5. There is a heap-based ...

GHSA-4wx4-jx62-422q

CVSS3: 8.8

github

больше 3 лет назад

An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parse_SST function.

EPSS

Процентиль: 73%

0.00771

Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

CVE-2018-7436

Описание

Пакет freexl

Ссылки на источники

Связанные уязвимости