CVE-2010-3798

Опубликовано: 16 нояб. 2010

Источник: debian

Описание

Heap-based buffer overflow in xar in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted xar archive.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
xar	fixed	1.8.0.498-1		package
xar	no-dsa		lenny	package

Примечания

Per https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YV6RF6VWM7AFYFTTS7VY5TNH26QUEEFC/
fixed in 1.8 dev branch with 417.1 subversion

Связанные уязвимости

CVE-2010-3798

nvd

около 15 лет назад

Heap-based buffer overflow in xar in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted xar archive.

GHSA-56f7-96cg-x9vh

github

больше 3 лет назад

Heap-based buffer overflow in xar in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted xar archive.