Lucene search

K
cloudlinuxCloudLinuxCLSA-2021:1640790545
HistoryDec 29, 2021 - 3:09 p.m.

Fix of CVE: CVE-2021-45078, CVE-2018-9138, CVE-2018-17985, CVE-2018-12641, CVE-2018-12699, CVE-2018-12698, CVE-2018-12697, CVE-2018-12700, CVE-2018-18484, CVE-2018-18701, CVE-2018-12934, CVE-2018-18700, CVE-2018-17794, CVE-2018-18483

2021-12-2915:09:05
repo.cloudlinux.com
51

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

  • CVE-2018-9138: Fix stack exhaustion
  • CVE-2018-12641: Fix stack exhaustion
  • CVE-2018-12697: Fix NULL pointer dereference
  • CVE-2018-12698: Fix memory consumption
  • CVE-2018-12699: Fix heap-based buffer overflow
  • CVE-2018-12700: Fix infinite recursion
  • CVE-2018-17794: Fix NULL pointer dereference
  • CVE-2018-17985: Fix recursive calls
  • CVE-2018-18484: Fix stack exhaustion
  • CVE-2018-18700: Fix stack consumption vulnerability
  • CVE-2018-18701: Fix infinite recursion
  • CVE-2018-18483: Fix malloc call with the result of an integer-overflowing
  • CVE-2018-12934: Fix excessive memory consumption
  • CVE-2021-45078: Fix heap-based buffer overflow

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

Related for CLSA-2021:1640790545