VDB
CVE-2021-32435
CVE-2021-32435
PUBLISHED
Stack-based buffer overflow in the function get_key in parse.c of abcm2ps v8.14.11 allows remote attackers to cause a Denial of Service (DoS) via unspecified vectors.
EPSS 0.87% · 75.5th percentile
Risk Scores
EPSS Score
0.87%
75.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:18.04:LTS | abcm2ps | 0, 7.8.9-1, 7.8.9-1build1 |
| Ubuntu:Pro:22.04:LTS | abcm2ps | 8.14.11-0.1, 0 |
| Ubuntu:Pro:16.04:LTS | abcm2ps | 0, 7.8.9-1 |
| Ubuntu:Pro:20.04:LTS | abcm2ps | 8.14.5-0.1, 8.14.6-0.1, 0 |
Exploit Intelligence
- https://github.com/leesavide/abcm2ps/issues/84 (nist-nvd)
- https://github.com/leesavide/abcm2ps/commit/3169ace6d63f6f517a64e8df0298f44a490c4a15 (circl)
- FEDORA-2022-6b46927596 (circl)
- FEDORA-2022-68d22975a4 (circl)
- FEDORA-2022-93025de981 (circl)
- [debian-lts-announce] 20220417 [SECURITY] [DLA 2983-1] abcm2ps security update (circl)
Timeline
- Mar 10, 2022 CVE Published
- Mar 11, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jun 22, 2022 EPSS Score
- Aug 13, 2022 EPSS Score
- Oct 4, 2022 EPSS Score
- Nov 24, 2022 EPSS Score
- Jan 14, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Jun 17, 2023 EPSS Score
- Aug 8, 2023 EPSS Score
- Sep 28, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2021-32435 third-party-advisory
- https://github.com/lewdlime/abcm2ps/commit/3169ace6d63f6f517a64e8df0298f44a490c4a15 third-party-advisory
- https://github.com/lewdlime/abcm2ps/issues/84 third-party-advisory
- https://github.com/leesavide/abcm2ps/commit/3169ace6d63f6f517a64e8df0298f44a490c4a15 third-party-advisory
- https://github.com/leesavide/abcm2ps/issues/84 third-party-advisory
- https://ubuntu.com/security/notices/USN-5961-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2021-32435 third-party-advisory