exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

CVE-2017-1000370

около 8 лет назад

The offset2lib patch as used in the Linux Kernel contains a vulnerability that allows a PIE binary to be execve()'ed with 1GB of arguments or environmental strings then the stack occupies the address 0x80000000 and the PIE binary is mapped above 0x40000000 nullifying the protection of the offset2lib patch. This affects Linux Kernel version 4.11.5 and earlier. This is a different issue than CVE-2017-1000371. This issue appears to be limited to i386 based systems.

CVSS3: 7.8

EPSS: Низкий

CVE-2017-1000370

около 8 лет назад

CVSS3: 2.9

EPSS: Низкий

CVE-2017-1000370

около 8 лет назад

CVSS3: 7.8

EPSS: Низкий

CVE-2017-1000370

около 8 лет назад

The offset2lib patch as used in the Linux Kernel contains a vulnerabil ...

CVSS3: 7.8

EPSS: Низкий

GHSA-wgvc-2mqw-6w3w

около 3 лет назад

CVSS3: 7.8

EPSS: Низкий

BDU:2017-01594

около 8 лет назад

Уязвимость патча offset2lib ядра операционной системы Linux, позволяющая нарушителю получить доступ к странице защиты стека

CVSS3: 7.8

EPSS: Низкий

ELSA-2020-5708

около 5 лет назад

ELSA-2020-5708: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2017-1000370 The offset2lib patch as used in the Linux Kernel contains a vulnerability that allows a PIE binary to be execve()'ed with 1GB of arguments or environmental strings then the stack occupies the address 0x80000000 and the PIE binary is mapped above 0x40000000 nullifying the protection of the offset2lib patch. This affects Linux Kernel version 4.11.5 and earlier. This is a different issue than CVE-2017-1000371. This issue appears to be limited to i386 based systems.	CVSS3: 7.8	2% Низкий	около 8 лет назад
CVE-2017-1000370 The offset2lib patch as used in the Linux Kernel contains a vulnerability that allows a PIE binary to be execve()'ed with 1GB of arguments or environmental strings then the stack occupies the address 0x80000000 and the PIE binary is mapped above 0x40000000 nullifying the protection of the offset2lib patch. This affects Linux Kernel version 4.11.5 and earlier. This is a different issue than CVE-2017-1000371. This issue appears to be limited to i386 based systems.	CVSS3: 2.9	2% Низкий	около 8 лет назад
CVE-2017-1000370 The offset2lib patch as used in the Linux Kernel contains a vulnerability that allows a PIE binary to be execve()'ed with 1GB of arguments or environmental strings then the stack occupies the address 0x80000000 and the PIE binary is mapped above 0x40000000 nullifying the protection of the offset2lib patch. This affects Linux Kernel version 4.11.5 and earlier. This is a different issue than CVE-2017-1000371. This issue appears to be limited to i386 based systems.	CVSS3: 7.8	2% Низкий	около 8 лет назад
CVE-2017-1000370 The offset2lib patch as used in the Linux Kernel contains a vulnerabil ...	CVSS3: 7.8	2% Низкий	около 8 лет назад
GHSA-wgvc-2mqw-6w3w The offset2lib patch as used in the Linux Kernel contains a vulnerability that allows a PIE binary to be execve()'ed with 1GB of arguments or environmental strings then the stack occupies the address 0x80000000 and the PIE binary is mapped above 0x40000000 nullifying the protection of the offset2lib patch. This affects Linux Kernel version 4.11.5 and earlier. This is a different issue than CVE-2017-1000371. This issue appears to be limited to i386 based systems.	CVSS3: 7.8	2% Низкий	около 3 лет назад
BDU:2017-01594 Уязвимость патча offset2lib ядра операционной системы Linux, позволяющая нарушителю получить доступ к странице защиты стека	CVSS3: 7.8	2% Низкий	около 8 лет назад
ELSA-2020-5708 ELSA-2020-5708: Unbreakable Enterprise kernel security update (IMPORTANT)			около 5 лет назад

Уязвимостей на страницу