CVE-2020-27638

EUVD-2020-20145
receive.c in fastd before v21 allows denial of service (assertion failure) when receiving packets with an invalid type code.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
Affected Products (NVD)
VendorProductVersion
fastd_projectfastd
𝑥
< 21.0
debiandebian_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
fastd
bookworm
22-4
fixed
bullseye
21-1
fixed
sid
22-4
fixed
trixie
22-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
fastd
bionic
Fixed 18-3ubuntu0.18.04.1
released
focal
Fixed 18-3ubuntu0.1
released
groovy
Fixed 19-3ubuntu0.1
released
trusty
dne
xenial
Fixed 17-4ubuntu0.1
released
Common Weakness Enumeration
References
https://bugs.debian.org/972521
https://fastd.readthedocs.io/en/stable/releases/v21.html
https://github.com/NeoRaider/fastd/commit/737925113363b6130879729cdff9ccc46c33eaea
https://lists.debian.org/debian-lts-announce/2020/10/msg00025.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D2LNSF2LI4RQ7BVGHTJQUJWP7RVGHDTK/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GUZ3AGTAXH7OOP45F5WXBVRQ3IDWUR7M/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WSMH65GHKHMJAK2VMPROIPIUS4IA63CW/
https://bugs.debian.org/972521
https://fastd.readthedocs.io/en/stable/releases/v21.html
https://github.com/NeoRaider/fastd/commit/737925113363b6130879729cdff9ccc46c33eaea
https://lists.debian.org/debian-lts-announce/2020/10/msg00025.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D2LNSF2LI4RQ7BVGHTJQUJWP7RVGHDTK/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GUZ3AGTAXH7OOP45F5WXBVRQ3IDWUR7M/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WSMH65GHKHMJAK2VMPROIPIUS4IA63CW/