Candidate: CVE-2021-3756
PublicDate: 2021-10-29 16:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3756
 https://huntr.dev/bounties/7ca8d9ea-e2a6-4294-af28-70260bb53bc1/
 https://github.com/hoene/libmysofa/commit/890400ebd092c574707d0c132124f8ff047e20e1 (v1.2.1)
 https://github.com/hoene/libmysofa/commit/890400ebd092c574707d0c132124f8ff047e20e1
 https://huntr.dev/bounties/7ca8d9ea-e2a6-4294-af28-70260bb53bc1
Description:
 libmysofa is vulnerable to Heap-based Buffer Overflow
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: pfsmorigo
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]


Patches_libmysofa:
upstream_libmysofa: needs-triage
trusty_libmysofa: ignored (out of standard support)
xenial_libmysofa: ignored (out of standard support)
bionic_libmysofa: needed
focal_libmysofa: needed
hirsute_libmysofa: ignored (reached end-of-life)
impish_libmysofa: needed
jammy_libmysofa: needs-triage
devel_libmysofa: needs-triage