CVE-2017-5357

regex.c in GNU ed before 1.14.1 allows attackers to cause a denial of service (crash) via a malformed command, which triggers an invalid free.
Configurations

Configuration 1 (hide)

cpe:2.3:o:fedoraproject:fedora:25:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:gnu:ed:*:*:*:*:*:*:*:*

History

07 Nov 2023, 02:49

Type Values Removed Values Added
References
  • {'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZVH54XNZ77ICNBJTPI2DLJYQTA3SYSFC/', 'name': 'FEDORA-2017-f87674ad41', 'tags': ['Third Party Advisory'], 'refsource': 'FEDORA'}
  • () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVH54XNZ77ICNBJTPI2DLJYQTA3SYSFC/ -

Information

Published : 2017-02-17 02:59

Updated : 2023-12-10 12:01


NVD link : CVE-2017-5357

Mitre link : CVE-2017-5357

CVE.ORG link : CVE-2017-5357


JSON object : View

Products Affected

gnu

  • ed

fedoraproject

  • fedora
CWE
CWE-416

Use After Free