Alpaquita LinuxStreamSecurity Advisory
Search Cve

CVE-2017-15874

Published: August 31, 2023Last modified: August 31, 2023

Description

archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to a read access violation.

Severity score breakdown

ParameterValue
Base score5.5
Attack VectorLOCAL
Attack complexityLOW
Privileges requiredNONE
User interactionREQUIRED
ScopeUNCHANGED
ConfidentialityNONE
Integrity impactNONE
Availability impactHIGH
VectorCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Status

ProductReleasePackageStatus
Alpaquita Linux23 LTSbusyboxNot affected (1.35.0-r30)
StreambusyboxNot affected (1.36.1-r6)

References

ON THIS PAGE