Lucene search

K
ubuntuUbuntuUSN-6472-1
HistoryNov 07, 2023 - 12:00 a.m.

GNU Scientific Library vulnerability

2023-11-0700:00:00
ubuntu.com
18
ubuntu
23.04
22.04
20.04
18.04
16.04
gsl library
remote attacker
denial of service
arbitrary code
security vulnerability

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

7.1

Confidence

High

EPSS

0.001

Percentile

31.4%

Releases

  • Ubuntu 23.04
  • Ubuntu 22.04 LTS
  • Ubuntu 20.04 LTS
  • Ubuntu 18.04 ESM
  • Ubuntu 16.04 ESM

Packages

  • gsl - A modern numerical library for C and C++ programmers

Details

It was discovered that GNU Scientific Library incorrectly handled certain
inputs. If a user or an automated system were tricked into opening a specially
crafted input file, a remote attacker could possibly use this issue to cause a
denial of service or execute arbitrary code.

OSVersionArchitecturePackageVersionFilename
Ubuntu23.04noarchgsl-bin< 2.7.1+dfsg-3ubuntu0.23.04.1UNKNOWN
Ubuntu23.04noarchlibgsl-dbg< 2.7.1+dfsg-3ubuntu0.23.04.1UNKNOWN
Ubuntu23.04noarchlibgsl-dev< 2.7.1+dfsg-3ubuntu0.23.04.1UNKNOWN
Ubuntu23.04noarchlibgsl27< 2.7.1+dfsg-3ubuntu0.23.04.1UNKNOWN
Ubuntu23.04noarchlibgslcblas0< 2.7.1+dfsg-3ubuntu0.23.04.1UNKNOWN
Ubuntu22.04noarchgsl-bin< 2.7.1+dfsg-3ubuntu0.22.04.1~esm1UNKNOWN
Ubuntu22.04noarchgsl-bin< 2.7.1+dfsg-3UNKNOWN
Ubuntu22.04noarchlibgsl-dbg< 2.7.1+dfsg-3UNKNOWN
Ubuntu22.04noarchlibgsl-dev< 2.7.1+dfsg-3UNKNOWN
Ubuntu22.04noarchlibgsl27< 2.7.1+dfsg-3UNKNOWN
Rows per page:
1-10 of 381

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

7.1

Confidence

High

EPSS

0.001

Percentile

31.4%