PT-2017-8725 · Arch Linux · Pacman

Tobias Stoeckmann

·

Publicado

2017-01-30

·

Atualizado

2020-04-21

·

CVE-2016-5434

CVSS v2.0

7.1

Alta

VetorAV:N/AC:M/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions pacman version 5.0.1
Description The issue allows remote attackers to cause a denial of service, resulting in either an infinite loop or an out-of-bounds read, by utilizing a crafted signature file.
Recommendations For version 5.0.1, consider updating to a newer version that addresses this issue, as no specific fix is provided for this version.

Exploit

Correção

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-399CWE-125

Identificadores relacionados

CVE-2016-5434

Produtos afetados

Pacman