VDB
CVE-2018-5378
CVE-2018-5378
PUBLISHED
Es existiert eine Schwachstelle in quagga. Ein angemeldeter, entfernter Angreifer kann diese Schwachstelle nutzen, um bis zu 64 KB an Daten aus dem Prozessspeicher offenzulegen.
EPSS 9.30% · 92.9th percentile
Risk Scores
EPSS Score
9.30%
92.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE | SUSE Linux 12 SP2 | |
| Debian | Debian Linux Jessie (8.0) 8.0 | |
| Ubuntu | Ubuntu Linux 17.10 | |
| Open Source | Open Source CentOS | |
| Open Source | Open Source quagga <1.2.3 | |
| SUSE | SUSE Linux | |
| Open Source | Open Source quagga | |
| Ubuntu | Ubuntu Linux 14.04 LTS | |
| Debian | Debian Linux Stretch (9.0) 9 | |
| SUSE | SUSE Linux 12 SP3 | |
| Oracle | Oracle Linux | |
| Ubuntu | Ubuntu Linux 16.04 LTS |
Timeline
- Feb 15, 2018 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- May 2, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
- Mar 11, 2023 EPSS Score
- May 13, 2023 EPSS Score
- Jul 13, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2018/wid-sec-w-2024-2213.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-2213 advisory
- https://www.debian.org/security/2018/dsa-4115 advisory
- https://usn.ubuntu.com/usn/usn-3573-1/ advisory
- https://www.suse.com/support/update/announcement/2018/suse-su-20180451-1/ advisory
- https://www.suse.com/support/update/announcement/2018/suse-su-20180456-1/ advisory
- https://gogs.quagga.net/Quagga/quagga/src/master/doc/security/Quagga-2018-1975.txt advisory
- https://gogs.quagga.net/Quagga/quagga/src/master/doc/security/Quagga-2018-1550.txt advisory
- https://gogs.quagga.net/Quagga/quagga/src/master/doc/security/Quagga-2018-1114.txt advisory
- https://gogs.quagga.net/Quagga/quagga/src/master/doc/security/Quagga-2018-0543.txt advisory
- https://access.redhat.com/errata/RHSA-2018:0377 advisory
- http://linux.oracle.com/errata/ELSA-2018-0377.html advisory
- http://centos-announce.2309468.n4.nabble.com/CentOS-announce-CESA-2018-0377-Important-CentOS-7-quagga-Security-Update-tp4644998.html advisory
- https://security.gentoo.org/glsa/201804-17 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-September/019517.html advisory