Candidate: CVE-2018-0608
PublicDate: 2018-06-26 14:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0608
 https://github.com/h2o/h2o/issues/1775
Description:
 Buffer overflow in H2O version 2.2.4 and earlier allows remote attackers to
 execute arbitrary code or cause a denial of service (DoS) via unspecified
 vectors.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]


Patches_h2o:
upstream_h2o: released (2.2.5+dfsg1-1)
precise/esm_h2o: DNE
trusty_h2o: ignored (out of standard support)
trusty/esm_h2o: DNE
xenial_h2o: DNE
bionic_h2o: needed
focal_h2o: not-affected (2.2.5+dfsg2-3build1)
groovy_h2o: not-affected
hirsute_h2o: not-affected
impish_h2o: not-affected
jammy_h2o: not-affected
devel_h2o: not-affected