CVE-2018-1084
7.5HIGHcorosync before version 2.4.4 is vulnerable to an integer overflow in exec/totemcrypto.c.
Veröffentlicht: 4/12/2018Aktualisiert: 11/21/2024
Beschreibung
corosync before version 2.4.4 is vulnerable to an integer overflow in exec/totemcrypto.c.
KI-AnalyseKI-gestützt
Betroffene Produkte
corosynccorosync
debiandebian_linux
9.0
redhatenterprise_linux_server
7.0
canonicalubuntu_linux
16.04
canonicalubuntu_linux
18.04
Referenzen
- http://www.securityfocus.com/bid/103758Third Party AdvisoryVDB Entry
- https://access.redhat.com/errata/RHSA-2018:1169Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1084Issue TrackingPatchThird Party Advisory
- https://security.gentoo.org/glsa/202107-01Third Party Advisory
- https://usn.ubuntu.com/4000-1/Third Party Advisory
- https://www.debian.org/security/2018/dsa-4174Third Party Advisory
- http://www.securityfocus.com/bid/103758Third Party AdvisoryVDB Entry
- https://access.redhat.com/errata/RHSA-2018:1169Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1084Issue TrackingPatchThird Party Advisory
- https://security.gentoo.org/glsa/202107-01Third Party Advisory
- https://usn.ubuntu.com/4000-1/Third Party Advisory
- https://www.debian.org/security/2018/dsa-4174Third Party Advisory