CVE-2017-18594
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-18594
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-18594.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-18594
- Related
- Published
- 2019-08-29T00:15:10Z
- Modified
- 2024-12-05T14:54:52.996879Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
nse_libssh2.cc in Nmap 7.70 is subject to a denial of service condition due to a double free when an SSH connection fails, as demonstrated by a leading \n character to ssh-brute.nse or ssh-auth-methods.nse.
- References
-
- https://seclists.org/nmap-announce/2019/0
- https://seclists.org/nmap-dev/2018/q2/45
- https://github.com/nmap/nmap/issues/1227
- https://github.com/nmap/nmap/commit/350bbe0597d37ad67abe5fef8fba984707b4e9ad
- https://github.com/nmap/nmap/issues/1077
- http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00073.html
- http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00075.html
- https://github.com/AMatchandaHaystack/Research/blob/master/Nmap%26libsshDF
- https://security.alpinelinux.org/vuln/CVE-2017-18594
- https://security-tracker.debian.org/tracker/CVE-2017-18594
Affected packages
Alpine:v3.10 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.70-r4
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
7.70-r2
7.70-r3
Alpine:v3.11 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.80-r0
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
7.70-r2
7.70-r3
Alpine:v3.12 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.80-r0
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
7.70-r2
7.70-r3
Alpine:v3.13 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.80-r0
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
7.70-r2
7.70-r3
Alpine:v3.14 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.80-r0
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
7.70-r2
7.70-r3
Alpine:v3.15 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.80-r0
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
7.70-r2
7.70-r3
Alpine:v3.16 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.80-r0
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
7.70-r2
7.70-r3
Alpine:v3.17 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.80-r0
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
7.70-r2
7.70-r3
Alpine:v3.18 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.80-r0
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
7.70-r2
7.70-r3
Alpine:v3.19 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.80-r0
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
7.70-r2
7.70-r3
Alpine:v3.20 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.80-r0
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
7.70-r2
7.70-r3
Alpine:v3.21 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.80-r0
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
7.70-r2
7.70-r3
Alpine:v3.7 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.60-r3
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
Alpine:v3.8 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.70-r2
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
Alpine:v3.9 / nmap
Package
- Name
- nmap
- Purl
- pkg:apk/alpine/nmap?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed7.70-r4
Affected versions
4.*
4.76-r0
4.76-r1
4.76-r2
5.*
5.00-r0
5.00-r1
5.20-r0
5.20-r1
5.21-r0
5.21-r1
5.21-r2
5.50-r0
5.51-r0
5.51.2-r0
5.51.3-r0
5.51.4-r0
5.51.5-r0
5.51.6-r0
6.*
6.00-r0
6.01-r0
6.25-r0
6.40-r0
6.46-r0
6.47-r0
7.*
7.00-r0
7.00-r1
7.01-r1
7.10-r0
7.11-r0
7.12-r0
7.30-r0
7.30-r1
7.40-r0
7.40-r1
7.50-r0
7.60-r0
7.60-r1
7.60-r2
7.70-r0
7.70-r1
7.70-r2
7.70-r3
Debian:11 / nmap
Package
- Name
- nmap
- Purl
- pkg:deb/debian/nmap?arch=source
Debian:12 / nmap
Package
- Name
- nmap
- Purl
- pkg:deb/debian/nmap?arch=source
Debian:13 / nmap
Package
- Name
- nmap
- Purl
- pkg:deb/debian/nmap?arch=source