CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
Confidence
Low
EPSS
Percentile
36.6%
Vulnerability of the pkgconf_tuple_parse function (libpkgconf/tuple.c) of the software tool for setting flags for pkgconf development libraries is related to a buffer overrun.
compiler and linker flags for pkgconf development libraries is related to the operation exceeding the buffer boundaries.
in memory Exploitation of the vulnerability could allow an attacker to cause a denial of service with a
specially crafted .pc file
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
Confidence
Low
EPSS
Percentile
36.6%