Sign in Subscribe

← All advisories

High severity7.5NVD Advisory· Published Feb 17, 2017· Updated May 13, 2026

CVE-2017-5357

CVE-2017-5357

Description

regex.c in GNU ed before 1.14.1 allows attackers to cause a denial of service (crash) via a malformed command, which triggers an invalid free.

Affected products

2

Fedoraproject/Fedora
cpe:2.3:o:fedoraproject:fedora:25:*:*:*:*:*:*:*
GNU/Ed
cpe:2.3:a:gnu:ed:*:*:*:*:*:*:*:*
Range: <=1.14

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

7

www.openwall.com/lists/oss-security/2017/01/12/5nvdMailing ListPatchThird Party Advisory
www.openwall.com/lists/oss-security/2017/01/12/6nvdMailing ListThird Party Advisory
www.openwall.com/lists/oss-security/2017/01/12/7nvdMailing ListThird Party Advisory
www.openwall.com/lists/oss-security/2017/01/13/3nvdMailing ListThird Party Advisory
www.securityfocus.com/bid/95422nvdThird Party AdvisoryVDB Entry
lists.gnu.org/archive/html/bug-ed/2017-01/msg00000.htmlnvdVendor Advisory
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVH54XNZ77ICNBJTPI2DLJYQTA3SYSFC/nvd

News mentions

0

No linked articles in our index yet.