CVE-2023-30362

Опубликовано: 23 июн. 2023

Источник: debian

Описание

Buffer Overflow vulnerability in coap_send function in libcoap library 4.3.1-103-g52cfd56 fixed in 4.3.1-120-ge242200 allows attackers to obtain sensitive information via malformed pdu.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libcoap3	fixed	4.3.1-2		package
libcoap3	ignored		bookworm	package

Примечания

https://github.com/obgm/libcoap/issues/1063
https://github.com/obgm/libcoap/commit/e242200f0af2a418dc9f69eee543feacc13cd851

Связанные уязвимости

CVE-2023-30362

CVSS3: 7.5

ubuntu

больше 2 лет назад

Buffer Overflow vulnerability in coap_send function in libcoap library 4.3.1-103-g52cfd56 fixed in 4.3.1-120-ge242200 allows attackers to obtain sensitive information via malformed pdu.

CVE-2023-30362

CVSS3: 7.5

nvd

больше 2 лет назад

Buffer Overflow vulnerability in coap_send function in libcoap library 4.3.1-103-g52cfd56 fixed in 4.3.1-120-ge242200 allows attackers to obtain sensitive information via malformed pdu.

GHSA-v5wr-22jp-335p

CVSS3: 7.5

github

больше 2 лет назад

Buffer Overflow vulnerability in coap_send function in libcoap library 4.3.1-103-g52cfd56 fixed in 4.3.1-120-ge242200 allows attackers to obtain sensitive information via malformed pdu.