CVE-2023-32665

Опубликовано: 14 сент. 2023

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 5.5

Описание

A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue where a crafted GVariant can cause excessive processing, leading to denial of service.

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	not-affected	2.76.1-1
esm-infra-legacy/trusty	released	2.40.2-0ubuntu1.1+esm6
esm-infra/bionic	released	2.56.4-0ubuntu0.18.04.9+esm3
esm-infra/focal	released	2.64.6-1~ubuntu20.04.6
esm-infra/xenial	released	2.48.2-0ubuntu4.8+esm3
focal	released	2.64.6-1~ubuntu20.04.6
jammy	released	2.72.4-0ubuntu2.2
kinetic	released	2.74.3-0ubuntu1.2
lunar	not-affected	2.76.1-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 17%

0.00055

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2023-32665

CVSS3: 6.5

redhat

почти 3 года назад

A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue where a crafted GVariant can cause excessive processing, leading to denial of service.

CVE-2023-32665

CVSS3: 5.5

nvd

около 2 лет назад

A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue where a crafted GVariant can cause excessive processing, leading to denial of service.

CVE-2023-32665

CVSS3: 5.5

msrc

около 1 месяца назад

Gvariant deserialisation does not match spec for non-normal data

CVE-2023-32665

CVSS3: 5.5

debian

около 2 лет назад

A flaw was found in GLib. GVariant deserialization is vulnerable to an ...

GHSA-c9xj-rf55-c64g

CVSS3: 5.5

github

около 2 лет назад

A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue where a crafted GVariant can cause excessive processing, leading to denial of service.

EPSS

Процентиль: 17%

0.00055

Низкий

5.5 Medium

CVSS3

CVE-2023-32665

Описание

Пакет glib2.0

Ссылки на источники

Связанные уязвимости