CVE-2017-17833
23.04.2018, 18:29
OpenSLP releases in the 1.0.2 and 1.1.0 code streams have a heap-related memory corruption issue which may manifest itself as a denial-of-service or a remote code-execution vulnerability.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| openslp | openslp | 1.0.2 |
| openslp | openslp | 1.1.0 |
| debian | debian_linux | 7.0 |
| canonical | ubuntu_linux | 14.04 |
| canonical | ubuntu_linux | 16.04 |
| redhat | enterprise_linux_desktop | 6.0 |
| redhat | enterprise_linux_desktop | 7.0 |
| redhat | enterprise_linux_server | 6.0 |
| redhat | enterprise_linux_server | 7.0 |
| redhat | enterprise_linux_server_aus | 7.6 |
| redhat | enterprise_linux_server_eus | 7.5 |
| redhat | enterprise_linux_server_eus | 7.6 |
| redhat | enterprise_linux_server_tus | 7.6 |
| redhat | enterprise_linux_workstation | 6.0 |
| redhat | enterprise_linux_workstation | 7.0 |
| lenovo | thinkserver_rd350g_firmware | - |
| lenovo | thinkserver_rd350x_firmware | - |
| lenovo | thinkserver_rd450x_firmware | - |
| lenovo | thinksystem_hr630x_firmware | - |
| lenovo | thinksystem_hr650x_firmware | - |
| lenovo | thinksystem_sr630_firmware | - |
| lenovo | flex_system_fc3171_8gb_san_switch_firmware | 𝑥 < 9.1.13.02.00 |
| lenovo | storage_n3310_firmware | 𝑥 < 4.53.351 |
| lenovo | storage_n4610_firmware | 𝑥 < 4.53.351 |
| lenovo | bm_nextscale_fan_power_controller | 𝑥 < 24p-2.15 |
| lenovo | cmm | 𝑥 < 1.8.0 |
| lenovo | fan_power_controller | 𝑥 < 30r-1.13 |
| lenovo | imm1 | 𝑥 < 1.55 |
| lenovo | imm2 | 𝑥 < 4.70 |
| lenovo | xclarity_administrator | 𝑥 < 1.4.0 |
| lenovo | thinkserver_rd340_firmware | 𝑥 < 50.00 |
| lenovo | thinkserver_rd350_firmware | 𝑥 < 4.53.351 |
| lenovo | thinkserver_rd440_firmware | 𝑥 ≤ 50.00 |
| lenovo | thinkserver_rd450_firmware | 𝑥 < 4.53.351 |
| lenovo | thinkserver_rd550_firmware | 𝑥 < 4.53.351 |
| lenovo | thinkserver_rd540_firmware | 𝑥 < 50.00 |
| lenovo | thinkserver_rd640_firmware | 𝑥 < 50.00 |
| lenovo | thinkserver_rd650_firmware | 𝑥 < 4.53.351 |
| lenovo | thinkserver_rq750_firmware | 𝑥 < 1.40 |
| lenovo | thinkserver_rs160_firmware | 𝑥 < 2.32 |
| lenovo | thinkserver_sd350_firmware | - |
| lenovo | thinkserver_td340_firmware | 𝑥 < 46.00 |
| lenovo | thinkserver_td350_firmware | 𝑥 < 4.53.351 |
| lenovo | thinkserver_ts460_firmware | 𝑥 < 2.32 |
𝑥
= Vulnerable software versions
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| openslp |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| openslp-32bit |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| openslp-devel |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| openslp-server |
|
Red Hat Enterprise Linux Releases
Common Weakness Enumeration
References