CVE-2018-6758

EUVD-2018-18505
The uwsgi_expand_path function in core/utils.c in Unbit uWSGI through 2.0.15 has a stack-based buffer overflow via a large directory length.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
Affected Products (NVD)
VendorProductVersion
unbituwsgi
𝑥
≤ 2.0.15
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
uwsgi
bookworm
2.0.21-5.1
fixed
bullseye
2.0.19.1-7.1
fixed
sid
2.0.28-1
fixed
trixie
2.0.26-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
uwsgi
artful
ignored
bionic
not-affected
trusty
Fixed 1.9.17.1-5ubuntu0.1
released
xenial
Fixed 2.0.12-5ubuntu3.2
released
Common Weakness Enumeration
References
http://lists.unbit.it/pipermail/uwsgi/2018-February/008835.html
https://github.com/unbit/uwsgi/commit/cb4636f7c0af2e97a4eef7a3cdcbd85a71247bfe
https://lists.debian.org/debian-lts-announce/2018/02/msg00010.html
http://lists.unbit.it/pipermail/uwsgi/2018-February/008835.html
https://github.com/unbit/uwsgi/commit/cb4636f7c0af2e97a4eef7a3cdcbd85a71247bfe
https://lists.debian.org/debian-lts-announce/2018/02/msg00010.html