CVE-2017-15955

Sažetak

bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to an "Access violation near NULL on destination operand" and crash when processing a malformed CUE (.cue) file.

Reference

https://github.com/extramaster/bchunk/issues/4
https://github.com/hessu/bchunk/issues/2
https://lists.debian.org/debian-lts-announce/2017/11/msg00001.html
https://www.debian.org/security/2017/dsa-4026

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

04-02-2018 - 02:29

Objavljeno

28-10-2017 - 21:29