Описание
The libevt_record_values_read_event() function in libevt_record_values.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 20170120-1+deb9u1build0.17.10.1 |
| bionic | released | 20170120-2 |
| cosmic | released | 20170120-2 |
| devel | released | 20170120-2 |
| disco | released | 20170120-2 |
| eoan | released | 20170120-2 |
| esm-apps/bionic | released | 20170120-2 |
| esm-apps/focal | released | 20170120-2 |
| esm-apps/jammy | released | 20170120-2 |
| esm-apps/noble | released | 20170120-2 |
Показывать по
EPSS
2.1 Low
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
The libevt_record_values_read_event() function in libevt_record_values.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub
The libevt_record_values_read_event() function in libevt_record_values ...
** DISPUTED ** The libevt_record_values_read_event() function in libevt_record_values.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub.
EPSS
2.1 Low
CVSS2
5.5 Medium
CVSS3