CVE-2014-4715 in Kernelinformation

Résumé (Anglaise)

Yann Collet LZ4 before r119, when used on certain 32-bit platforms that allocate memory beyond 0x80000000, does not properly detect integer overflows, which allows context-dependent attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted Literal Run, a different vulnerability than CVE-2014-4611.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Réserver

02/07/2014

Divulgation

03/07/2014

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
66982	Linux Kernel LZO/LZ4 Compression lz4.c Exécution de code à distance	189	Non prouvée	Correctif officiel	CVE-2014-4715

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PrécédentAperçuSuivant ▸

Interested in the pricing of exploits?

See the underground prices here!