Procps-ng_project Procps-ng
5 CVEs affecting Procps-ng_project Procps-ng. Latest disclosed: 2018-05-23. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-1124 | High | 7.8 | 2018-05-23 | procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap corruption in file2strvec function. This allows a privilege escal… |
CVE-2018-1125 | High | 7.5 | 2018-05-23 | procps-ng before version 3.3.15 is vulnerable to a stack buffer overflow in pgrep. This vulnerability is mitigated by FORTIFY, as it involves strncat() to a st… |
CVE-2018-1122 | High | 7.3 | 2018-05-23 | procps-ng before version 3.3.15 is vulnerable to a local privilege escalation in top. If a user runs top with HOME unset in an attacker-controlled directory, t… |
CVE-2018-1126 | Medium | 4.8 | 2018-05-23 | procps-ng before version 3.3.15 is vulnerable to an incorrect integer size in proc/alloc.* leading to truncation/integer overflow issues. This flaw is related… |
CVE-2018-1123 | Low | 3.9 | 2018-05-23 | procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer overflow. Inbuilt protection in ps maps a guard page at the end of t… |