CVE-2017-5357
Summary
| CVE | CVE-2017-5357 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2017-02-17 02:59:00 UTC |
|---|
| Updated | 2023-11-07 02:49:00 UTC |
|---|
| Description | regex.c in GNU ed before 1.14.1 allows attackers to cause a denial of service (crash) via a malformed command, which triggers an invalid free. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| oss-security - Re: invalid free in GNU ed before 1.14.1 |
MLIST |
www.openwall.com |
Mailing List, Third Party Advisory |
| oss-security - invalid free in GNU ed before 1.14.1 |
MLIST |
www.openwall.com |
Mailing List, Patch, Third Party Advisory |
| [SECURITY] Fedora 25 Update: ed-1.14.1-1.fc25 - package-announce - Fedora Mailing-Lists |
FEDORA |
lists.fedoraproject.org |
Third Party Advisory |
| oss-security - Re: invalid free in GNU ed before 1.14.1 |
MLIST |
www.openwall.com |
Mailing List, Third Party Advisory |
| oss-security - Re: invalid free in GNU ed before 1.14.1 |
MLIST |
www.openwall.com |
Mailing List, Third Party Advisory |
| [SECURITY] Fedora 25 Update: ed-1.14.1-1.fc25 - package-announce - Fedora Mailing-Lists |
|
lists.fedoraproject.org |
|
| GNU ed CVE-2017-5357 Denial of Service Vulnerability |
BID |
www.securityfocus.com |
Third Party Advisory, VDB Entry |
| [Bug-ed] invalid free on malformed commands |
MLIST |
lists.gnu.org |
Vendor Advisory |
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 671107 EulerOS Security Update for ed (EulerOS-SA-2019-2572)
