Описание
github.com/nwaples/rardecode versions <=2.1.1 fail to restrict the dictionary size when reading large RAR dictionary sizes, which allows an attacker to provide a specially crafted RAR file and cause Denial of Service via an Out Of Memory Crash.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | needs-triage | |
| jammy | DNE | |
| noble | DNE | |
| plucky | DNE | |
| questing | needs-triage | |
| upstream | needs-triage |
Показывать по
10
5.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.3
nvd
4 месяца назад
github.com/nwaples/rardecode versions <=2.1.1 fail to restrict the dictionary size when reading large RAR dictionary sizes, which allows an attacker to provide a specially crafted RAR file and cause Denial of Service via an Out Of Memory Crash.
CVSS3: 5.3
debian
4 месяца назад
github.com/nwaples/rardecode versions <=2.1.1 fail to restrict the dic ...
CVSS3: 5.3
github
4 месяца назад
rardecode: DoS risk due to unrestricted RAR dictionary sizes
5.3 Medium
CVSS3