1. Home
  2. CVEs with redhat.advisories.bugzilla.title==CVE-2017-13090 wget: Heap-based buffer overflow in HTTP protocol handling
Max CVSS 9.3 Min CVSS 9.3 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2017-13090 9.3
The retr.c:fd_read_body() function is called when processing OK responses. When the response is sent chunked in wget before 1.19.2, the chunk parser uses strtol() to read each chunk's length, but doesn't check that the chunk length is a non-negative
30-12-2017 - 02:29 27-10-2017 - 19:29
Back to Top Mark selected
Back to Top