Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2020-14150

Опубликовано: 15 июн. 2020
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 2.1
CVSS3: 5.5

Описание

GNU Bison before 3.5.4 allows attackers to cause a denial of service (application crash). NOTE: there is a risk only if Bison is used with untrusted input, and an observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug reports were intended to show that a crash may occur in Bison itself, not that a crash may occur in code that is generated by Bison.

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

not-affected

2:3.6.1+dfsg-2
eoan

ignored

end of life
esm-infra-legacy/trusty

DNE

esm-infra/bionic

needs-triage

esm-infra/focal

needs-triage

esm-infra/xenial

needs-triage

focal

ignored

end of standard support, was needs-triage
groovy

not-affected

2:3.6.1+dfsg-2
hirsute

not-affected

2:3.6.1+dfsg-2

Показывать по

Ссылки на источники

EPSS

Процентиль: 31%
0.00117
Низкий

2.1 Low

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2020-14150

CVSS3: 5.5
redhat
почти 6 лет назад

GNU Bison before 3.5.4 allows attackers to cause a denial of service (application crash). NOTE: there is a risk only if Bison is used with untrusted input, and an observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug reports were intended to show that a crash may occur in Bison itself, not that a crash may occur in code that is generated by Bison.

nvd логотип

CVE-2020-14150

CVSS3: 5.5
nvd
больше 5 лет назад

GNU Bison before 3.5.4 allows attackers to cause a denial of service (application crash). NOTE: there is a risk only if Bison is used with untrusted input, and an observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug reports were intended to show that a crash may occur in Bison itself, not that a crash may occur in code that is generated by Bison.

msrc логотип

CVE-2020-14150

CVSS3: 5.5
msrc
4 месяца назад

GNU Bison before 3.5.4 allows attackers to cause a denial of service (application crash). NOTE: there is a risk only if Bison is used with untrusted input, and an observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug reports were intended to show that a crash may occur in Bison itself, not that a crash may occur in code that is generated by Bison.

debian логотип

CVE-2020-14150

CVSS3: 5.5
debian
больше 5 лет назад

GNU Bison before 3.5.4 allows attackers to cause a denial of service ( ...

github логотип

GHSA-wqmg-pp5q-5hqr

CVSS3: 5.5
github
больше 3 лет назад

GNU Bison before 3.5.4 allows attackers to cause a denial of service (application crash).

EPSS

Процентиль: 31%
0.00117
Низкий

2.1 Low

CVSS2

5.5 Medium

CVSS3