vulnerability
Arch Linux: Denial of service (CVE-2017-15955)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | Oct 28, 2017 | Jul 11, 2025 | Mar 25, 2026 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Oct 28, 2017
Added
Jul 11, 2025
Modified
Mar 25, 2026
Description
bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to an "Access violation near NULL on destination operand" and crash when processing a malformed CUE (.cue) file.
Solution
arch-linux-upgrade-latest
References
- CVE-2017-15955
- https://attackerkb.com/topics/CVE-2017-15955
- https://euvd.enisa.europa.eu/vulnerability/EUVD-2017-7371
- https://github.com/extramaster/bchunk/issues/4
- https://github.com/hessu/bchunk/issues/2
- https://lists.debian.org/debian-lts-announce/2017/11/msg00001.html
- https://security.archlinux.org/ASA-201803-24
- https://www.debian.org/security/2017/dsa-4026
- CWE-476
- EUVD-EUVD-2017-7371
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.