Описание
Buffer overflow in the UdmDocToTextBuf function in mnoGoSearch 3.2.13 through 3.2.15 could allow remote attackers to execute arbitrary code by indexing a large document.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| mnogosearch | fixed | 3.2.18 | package |
Примечания
it's not quite clear which version exactly fixes the problem;
I checked the source code of the most recent version and compared
it with the problematic section described in the advisory
(http://marc.info/?l=bugtraq&m=107695139930726&w=2)
and I can confirm the buffer overflow is fixed there
EPSS
Связанные уязвимости
Buffer overflow in the UdmDocToTextBuf function in mnoGoSearch 3.2.13 through 3.2.15 could allow remote attackers to execute arbitrary code by indexing a large document.
Buffer overflow in the UdmDocToTextBuf function in mnoGoSearch 3.2.13 through 3.2.15 could allow remote attackers to execute arbitrary code by indexing a large document.
EPSS