Описание
An integer overflow in whoopsie before versions 0.2.52.5ubuntu0.1, 0.2.62ubuntu0.1, 0.2.64ubuntu0.1, 0.2.66, results in an out-of-bounds write to a heap allocated buffer when processing large crash dumps. This results in a crash or possible code-execution in the context of the whoopsie process.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 0.2.62ubuntu0.1 |
| cosmic | released | 0.2.62ubuntu1 |
| devel | released | 0.2.66 |
| disco | released | 0.2.64ubuntu0.1 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | released | 0.2.62ubuntu0.1 |
| esm-infra/xenial | released | 0.2.52.5ubuntu0.1 |
| precise/esm | DNE | |
| trusty/esm | DNE | |
| upstream | needs-triage |
Показывать по
4.6 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
An integer overflow in whoopsie before versions 0.2.52.5ubuntu0.1, 0.2.62ubuntu0.1, 0.2.64ubuntu0.1, 0.2.66, results in an out-of-bounds write to a heap allocated buffer when processing large crash dumps. This results in a crash or possible code-execution in the context of the whoopsie process.
An integer overflow in whoopsie before versions 0.2.52.5ubuntu0.1, 0.2.62ubuntu0.1, 0.2.64ubuntu0.1, 0.2.66, results in an out-of-bounds write to a heap allocated buffer when processing large crash dumps. This results in a crash or possible code-execution in the context of the whoopsie process.
Уязвимость сервиса whoopsie операционной системы Ubuntu, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
4.6 Medium
CVSS2
6.5 Medium
CVSS3