Candidate: CVE-2017-11343
PublicDate: 2017-07-17 13:18:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11343
 http://lists.nongnu.org/archive/html/chicken-announce/2017-07/msg00000.html
 http://lists.gnu.org/archive/html/chicken-announce/2017-07/msg00000.html
Description:
 Due to an incomplete fix for CVE-2012-6125, all versions of CHICKEN Scheme
 up to and including 4.12.0 are vulnerable to an algorithmic complexity
 attack. An attacker can provide crafted input which, when inserted into the
 symbol table, will result in O(n) lookup time.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N [7.5 HIGH]

Patches_chicken:
upstream_chicken: released (4.12.0-0.2)
precise/esm_chicken: DNE
trusty_chicken: ignored (reached end-of-life)
trusty/esm_chicken: DNE (trusty was needed)
vivid/ubuntu-core_chicken: DNE
xenial_chicken: ignored (end of standard support, was needed)
yakkety_chicken: ignored (reached end-of-life)
zesty_chicken: ignored (reached end-of-life)
artful_chicken: ignored (reached end-of-life)
bionic_chicken: not-affected (4.12.0-0.3)
cosmic_chicken: not-affected (4.12.0-0.3)
disco_chicken: not-affected (4.12.0-0.3)
eoan_chicken: not-affected (4.12.0-0.3)
focal_chicken: not-affected (4.12.0-0.3)
groovy_chicken: not-affected (4.12.0-0.3)
hirsute_chicken: not-affected (4.12.0-0.3)
impish_chicken: not-affected (4.12.0-0.3)
jammy_chicken: not-affected (4.12.0-0.3)
devel_chicken: not-affected (4.12.0-0.3)