Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2020-27618

Опубликовано: 26 фев. 2021
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 2.1
CVSS3: 5.5

Описание

The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails to advance the input state, which could lead to an infinite loop in applications, resulting in a denial of service, a different vulnerability from CVE-2016-10228.

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

needed

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

jammy

DNE

kinetic

DNE

Показывать по

РелизСтатусПримечание
bionic

released

2.27-3ubuntu1.5
devel

not-affected

2.33-0ubuntu1
esm-infra-legacy/trusty

DNE

esm-infra/bionic

released

2.27-3ubuntu1.5
esm-infra/focal

released

2.31-0ubuntu9.7
esm-infra/xenial

released

2.23-0ubuntu11.3+esm3
focal

released

2.31-0ubuntu9.7
groovy

ignored

end of life
hirsute

not-affected

2.33-0ubuntu1
impish

not-affected

2.33-0ubuntu1

Показывать по

Ссылки на источники

EPSS

Процентиль: 22%
0.00072
Низкий

2.1 Low

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2020-27618

CVSS3: 5.5
redhat
больше 5 лет назад

The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails to advance the input state, which could lead to an infinite loop in applications, resulting in a denial of service, a different vulnerability from CVE-2016-10228.

nvd логотип

CVE-2020-27618

CVSS3: 5.5
nvd
почти 5 лет назад

The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails to advance the input state, which could lead to an infinite loop in applications, resulting in a denial of service, a different vulnerability from CVE-2016-10228.

msrc логотип

CVE-2020-27618

CVSS3: 5.5
msrc
больше 4 лет назад

Описание отсутствует

debian логотип

CVE-2020-27618

CVSS3: 5.5
debian
почти 5 лет назад

The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and ...

github логотип

GHSA-6q5q-4c7r-7r4r

CVSS3: 5.5
github
больше 3 лет назад

The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails to advance the input state, which could lead to an infinite loop in applications, resulting in a denial of service, a different vulnerability from CVE-2016-10228.

EPSS

Процентиль: 22%
0.00072
Низкий

2.1 Low

CVSS2

5.5 Medium

CVSS3