Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2020-15570

Published: 6 July 2020

The parse_report() function in whoopsie.c in Whoopsie through 0.2.69 mishandles memory allocation failures, which allows an attacker to cause a denial of service via a malformed crash file.

Priority

Medium

CVSS 3 base score: 5.5

Status

Package Release Status
whoopsie
Launchpad, Ubuntu, Debian
bionic
Released (0.2.62ubuntu0.5)
eoan Ignored
(reached end-of-life)
focal
Released (0.2.69ubuntu0.1)
precise Does not exist

trusty Does not exist

upstream Needs triage

xenial
Released (0.2.52.5ubuntu0.5)