Lucene search

[email protected]NVD:CVE-2015-5218

HistoryNov 09, 2015 - 4:59 p.m.

CVE-2015-5218

2015-11-0916:59:06

CWE-119

[email protected]

web.nvd.nist.gov

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

5.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Buffer overflow in text-utils/colcrt.c in colcrt in util-linux before 2.27 allows local users to cause a denial of service (crash) via a crafted file, related to the page global variable.

Affected configurations

NVD

Node

kernelutil-linuxRange≤2.22

Node

opensuseopensuseMatch13.1

opensuseopensuseMatch13.2

opensuse_projectleapMatch42.1

References

lists.opensuse.org/opensuse-updates/2015-11/msg00035.html

www.spinics.net/lists/util-linux-ng/msg11873.html

bugzilla.redhat.com/show_bug.cgi?id=1259322

github.com/kerolasa/lelux-utiliteetit/commit/70e3fcf293c1827a2655a86584ab13075124a8a8

github.com/kerolasa/lelux-utiliteetit/commit/d883d64d96ab9bef510745d064a351145b9babec

www.kernel.org/pub/linux/utils/util-linux/v2.27/v2.27-ReleaseNotes

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

5.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2015-5218

nessus10 cve1 openvas8 cvelist1 mageia1 prion1 ubuntucve1 debiancve1 suse1 ibm1