Vulnerability Details CVE-2020-15570
The parse_report() function in whoopsie.c in Whoopsie through 0.2.69 mishandles memory allocation failures, which allows an attacker to cause a denial of service via a malformed crash file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.6%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 4.3
References
- https://github.com/sungjungk/whoopsie_killer2/blob/master/README.md
- https://github.com/sungjungk/whoopsie_killer2/blob/master/whoopsie_killer2.py
- https://launchpad.net/ubuntu/+source/whoopsie
- https://usn.ubuntu.com/4450-1/
- https://www.youtube.com/watch?v=oZXGwC7PWYE
- https://github.com/sungjungk/whoopsie_killer2/blob/master/README.md
- https://github.com/sungjungk/whoopsie_killer2/blob/master/whoopsie_killer2.py
- https://launchpad.net/ubuntu/+source/whoopsie
- https://usn.ubuntu.com/4450-1/
- https://www.youtube.com/watch?v=oZXGwC7PWYE
Products affected by CVE-2020-15570
-
cpe:2.3:a:whoopsie_project:whoopsie:-
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.24.6
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.39
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.41
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.42
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.43
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.44
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.45
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.46
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.47
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.47.1
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.48
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.49
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.49.1
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.50
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.51
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.52
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.52.1
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.52.2
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.52.3
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.52.4
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.52.5
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.53
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.54
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.54.1
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.55
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.55.1
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.55.2
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.56
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.57
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.58
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.59
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.60
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.61
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.62
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.63
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.64
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.65
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.66
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.67
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.68
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.69