Memory Leak DoS Vulnerability in whoopsie's parse_report() Function

Memory Leak DoS Vulnerability in whoopsie's parse_report() Function

CVE-2020-11937 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

In whoopsie, parse_report() from whoopsie.c allows a local attacker to cause a denial of service via a crafted file. The DoS is caused by resource exhaustion due to a memory leak. Fixed in 0.2.52.5ubuntu0.5, 0.2.62ubuntu0.5 and 0.2.69ubuntu0.1.

Learn more about our Cis Benchmark Audit For Ubuntu Linux.