vulnerability
Ubuntu: USN-7422-1 (CVE-2021-44506): FIS-GT.M vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | 2022-04-15 | 2025-04-09 | 2025-04-14 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
2022-04-15
Added
2025-04-09
Modified
2025-04-14
Description
An issue was discovered in FIS GT.M through V7.0-000 (related to the YottaDB code base). A lack of input validation in calls to do_verify in sr_unix/do_verify.c allows attackers to attempt to jump to a NULL pointer by corrupting a function pointer.
Solution(s)
ubuntu-pro-upgrade-fis-gtmubuntu-pro-upgrade-fis-gtm-6-2-002ubuntu-pro-upgrade-fis-gtm-6-3-003aubuntu-pro-upgrade-fis-gtm-6-3-007ubuntu-pro-upgrade-fis-gtm-6-3-014
References
- CVE-2021-44506
- https://attackerkb.com/topics/CVE-2021-44506
- UBUNTU-USN-7422-1
- URL-http://tinco.pair.com/bhaskar/gtm/doc/articles/GTM_V7.0-002_Release_Notes.html
- URL-https://gitlab.com/YottaDB/DB/YDB/-/issues/828
- URL-https://ubuntu.com/security/notices/USN-7422-1
- URL-https://www.cve.org/CVERecord?id=CVE-2021-44506
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.