CVE-2026-27171

Опубликовано: 18 фев. 2026

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS3: 2.9

Описание

zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition.

Релиз	Статус	Примечание
devel	needs-triage
esm-infra-legacy/trusty	needs-triage
esm-infra-legacy/xenial	needs-triage
esm-infra/bionic	needs-triage
esm-infra/focal	needs-triage
esm-infra/xenial	ignored	end of ESM support, was needs-triage
jammy	needs-triage
noble	needs-triage
questing	needs-triage
resolute	needs-triage

Показывать по

Релиз	Статус	Примечание
devel	not-affected	uses system zlib
esm-infra-legacy/trusty	not-affected	uses system zlib
esm-infra-legacy/xenial	needed
esm-infra/bionic	needed
esm-infra/focal	needed
esm-infra/xenial	ignored	end of ESM support, was needed
jammy	not-affected	uses system zlib
noble	not-affected	uses system zlib
questing	not-affected	uses system zlib
resolute	not-affected	uses system zlib

Показывать по

Релиз	Статус	Примечание
devel	needs-triage
esm-infra-legacy/trusty	needs-triage
esm-infra-legacy/xenial	needs-triage
esm-infra/bionic	needs-triage
esm-infra/focal	needs-triage
esm-infra/xenial	ignored	end of ESM support, was needs-triage
jammy	needs-triage
noble	needs-triage
questing	needs-triage
resolute	needs-triage

Показывать по

Релиз	Статус	Примечание
devel	needs-triage
esm-apps-legacy/xenial	needs-triage
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
esm-apps/resolute	needs-triage
esm-apps/xenial	ignored	end of ESM support, was needs-triage
jammy	needs-triage
noble	needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 10%

0.00204

Низкий

2.9 Low

CVSS3

Связанные уязвимости

CVE-2026-27171

CVSS3: 3.3

redhat

4 месяца назад

zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition.

CVE-2026-27171

CVSS3: 2.9

nvd

4 месяца назад

zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition.

CVE-2026-27171

CVSS3: 2.9

msrc

4 месяца назад

zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition.

CVE-2026-27171

CVSS3: 2.9

debian

4 месяца назад

zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32 ...

SUSE-SU-2026:0783-1

suse-cvrf

4 месяца назад

Security update for zlib

EPSS

Процентиль: 10%

0.00204

Низкий

2.9 Low

CVSS3

CVE-2026-27171

Описание

Пакет klibc

Пакет rsync

Пакет zlib

Пакет zsync

Ссылки на источники

Связанные уязвимости