Уязвимость CVE-2008-1372: Информация

Описание

bzlib.c in bzip2 before 1.0.5 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted file that triggers a buffer over-read, as demonstrated by the PROTOS GENOME test suite for Archive Formats.

Важность: MEDIUM (4,3)

Ссылки на рекомендации, решения и инструменты

1. Подверженные конфигурации:

   1. Конфигурация 1

      cpe:2.3:a:bzip:bzip2:1.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:bzip:bzip2:0.9_a:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:bzip:bzip2:0.9.5d:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:bzip:bzip2:0.9_c:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:bzip:bzip2:1.0.3:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:bzip:bzip2:1.0.2:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:bzip:bzip2:0.9.5a:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:bzip:bzip2:0.9.5b:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:bzip:bzip2:0.9:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:bzip:bzip2:1.0.1:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:bzip:bzip2:0.9.5c:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:bzip:bzip2:0.9_b:*:*:*:*:*:*:*

      ---