CVE-2024-0901

Опубликовано: 25 мар. 2024

Источник: debian

Описание

Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
wolfssl	fixed	5.7.0-0.1	experimental	package
wolfssl	fixed	5.7.0-0.3		package
wolfssl	no-dsa		bookworm	package
wolfssl	no-dsa		bullseye	package

Примечания

https://github.com/wolfSSL/wolfssl/issues/7089
https://github.com/wolfSSL/wolfssl/pull/7099

Связанные уязвимости

CVE-2024-0901

CVSS3: 7.5

ubuntu

почти 2 года назад

Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length.

CVE-2024-0901

CVSS3: 7.5

nvd

почти 2 года назад

Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length.

CVE-2024-0901

CVSS3: 7.5

msrc

больше 1 года назад

SEGV and out of bounds memory read from malicious packet

GHSA-qrv4-68mg-fv43

CVSS3: 7.5

github

почти 2 года назад

Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length.