Описание
Sane 1.2.1 heap bounds overwrite in init_options() from backend/test.c via a long init_mode string in a configuration file. NOTE: this is disputed because there is no expectation that test.c code should be executed with an attacker-controlled configuration file.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | disputed |
| esm-infra/bionic | not-affected | disputed |
| esm-infra/focal | not-affected | disputed |
| esm-infra/xenial | not-affected | disputed |
| focal | not-affected | disputed |
| jammy | not-affected | disputed |
| mantic | ignored | end of life, was needs-triage |
| noble | not-affected | disputed |
| upstream | needs-triage |
Показывать по
EPSS
7.1 High
CVSS3
Связанные уязвимости
Sane 1.2.1 heap bounds overwrite in init_options() from backend/test.c via a long init_mode string in a configuration file. NOTE: this is disputed because there is no expectation that test.c code should be executed with an attacker-controlled configuration file.
Sane 1.2.1 heap bounds overwrite in init_options() from backend/test.c ...
Sane 1.2.1 heap bounds overwrite in init_options() from backend/test.c via a long init_mode string in a configuration file. NOTE: this is disputed because there is no expectation that test.c code should be executed with an attacker-controlled configuration file.
EPSS
7.1 High
CVSS3