Опубликовано: 20 июл. 2021
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3
CVSS3: 6.5
Описание
libarchive 3.4.1 through 3.5.1 has a use-after-free in copy_string (called from do_uncompress_block and process_block).
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | code not present |
| devel | released | 3.5.2-1ubuntu1 |
| esm-infra-legacy/trusty | not-affected | code not present |
| esm-infra/bionic | not-affected | code not present |
| esm-infra/focal | not-affected | 3.4.0-2ubuntu1.1 |
| esm-infra/xenial | not-affected | code not present |
| focal | released | 3.4.0-2ubuntu1.1 |
| groovy | ignored | end of life |
| hirsute | ignored | end of life |
| impish | released | 3.4.3-2ubuntu0.1 |
Показывать по
10
EPSS
Процентиль: 29%
0.00106
Низкий
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.5
redhat
около 4 лет назад
libarchive 3.4.1 through 3.5.1 has a use-after-free in copy_string (called from do_uncompress_block and process_block).
CVSS3: 6.5
nvd
около 4 лет назад
libarchive 3.4.1 through 3.5.1 has a use-after-free in copy_string (called from do_uncompress_block and process_block).
CVSS3: 6.5
debian
около 4 лет назад
libarchive 3.4.1 through 3.5.1 has a use-after-free in copy_string (ca ...
CVSS3: 6.5
github
около 3 лет назад
libarchive 3.4.1 through 3.5.1 has a use-after-free in copy_string (called from do_uncompress_block and process_block).
EPSS
Процентиль: 29%
0.00106
Низкий
4.3 Medium
CVSS2
6.5 Medium
CVSS3