Vulnerabilities > CVE-2016-5434 - Resource Management Errors vulnerability in Pacman Project Pacman 5.0.1

047910
CVSS 7.1 - HIGH
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
network
pacman-project
CWE-399
NVD
Published: 2017-01-30
Updated: 2020-04-21

Summary

libalpm, as used in pacman 5.0.1, allows remote attackers to cause a denial of service (infinite loop or out-of-bounds read) via a crafted signature file.

Vulnerable Configurations

Part Description Count
Application
Pacman_Project
1

Common Weakness Enumeration (CWE)

References