rpm package
suse/ocaml&distro=SUSE Linux Enterprise Software Development Kit 12 SP1
pkg:rpm/suse/ocaml&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-8869 | Cri | 9.1 | < 4.02.3-6.6.14 | 4.02.3-6.6.14 | Jun 13, 2016 | OCaml before 4.03.0 does not properly handle sign extensions, which allows remote attackers to conduct buffer overflow attacks or obtain sensitive information as demonstrated by a long string to the String.copy function. |
- affected < 4.02.3-6.6.14fixed 4.02.3-6.6.14
OCaml before 4.03.0 does not properly handle sign extensions, which allows remote attackers to conduct buffer overflow attacks or obtain sensitive information as demonstrated by a long string to the String.copy function.