Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2019-8379

Опубликовано: 17 фев. 2019
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 6.8
CVSS3: 7.8

Описание

An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function be_uint32_read() located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file.

РелизСтатусПримечание
bionic

released

2.1-1ubuntu0.18.04.2
devel

not-affected

esm-infra-legacy/trusty

DNE

esm-infra/bionic

released

2.1-1ubuntu0.18.04.2
esm-infra/focal

not-affected

2.1-2.1build1
esm-infra/xenial

released

1.20-1ubuntu0.2+esm1
focal

not-affected

2.1-2.1build1
groovy

not-affected

hirsute

not-affected

impish

not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 48%
0.00254
Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2019-8379

CVSS3: 2.8
redhat
почти 7 лет назад

An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function be_uint32_read() located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file.

nvd логотип

CVE-2019-8379

CVSS3: 7.8
nvd
почти 7 лет назад

An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function be_uint32_read() located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file.

debian логотип

CVE-2019-8379

CVSS3: 7.8
debian
почти 7 лет назад

An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer der ...

github логотип

GHSA-422q-rpjc-cfgp

CVSS3: 7.8
github
больше 3 лет назад

An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function be_uint32_read() located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file.

oracle-oval логотип

ELSA-2019-2332

oracle-oval
больше 6 лет назад

ELSA-2019-2332: advancecomp security update (LOW)

EPSS

Процентиль: 48%
0.00254
Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3