OpenSSH 9.1 の二重解放

バージョン 1.1

Feb 9, 2023, 1:59 PM

CVSS metrics ("CVSSv3 score" changed from "6.5" to "9.8")
CVSS metrics ("CVSSv2 score" changed from "5.1" to "7.5")
CVSS metrics ("CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L" to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H")
CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C")
CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C")
CVSSv2 severity (based on CVE-2023-25136, severity increased from "Medium" to "High")
CVSSv3 score source (set to "CVE-2023-25136")
CVSSv3 severity (based on CVE-2023-25136, severity increased from "Medium" to "High")
Exploit attributes ("Exploit available" set to "False")
Exploit attributes ("Exploitability ease" set to "No known exploits are available")
CVSS metrics ("CVSSv2 vector" changed from "CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P" to "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P")