CVE-2025-0633

Опубликовано: 19 фев. 2025

Источник: debian

EPSS Низкий

Описание

Heap-based Buffer Overflow vulnerability in iniparser_dumpsection_ini() in iniparser allows attacker to read out of bound memory

Пакет	Статус	Версия исправления	Релиз	Тип
iniparser	fixed	4.2.6-1		package

https://gitlab.com/iniparser/iniparser/-/issues/177
(updated) Testcase: https://gitlab.com/iniparser/iniparser/-/commit/fe09afa96cbbae09f796f797c75ff3b3e60d2e7b (v4.2.6)
Fixed by: https://gitlab.com/iniparser/iniparser/-/commit/072a39a772a38c475e35a1be311304ca99e9de7f (v4.2.6)
Doesn't cross any security boundary

EPSS

Процентиль: 12%

0.00054

Низкий

CVE-2025-0633

ubuntu

9 месяцев назад

Heap-based Buffer Overflow vulnerability in iniparser_dumpsection_ini() in iniparser allows attacker to read out of bound memory

CVE-2025-0633

CVSS3: 4

redhat

9 месяцев назад

Heap-based Buffer Overflow vulnerability in iniparser_dumpsection_ini() in iniparser allows attacker to read out of bound memory

CVE-2025-0633

nvd

9 месяцев назад

Heap-based Buffer Overflow vulnerability in iniparser_dumpsection_ini() in iniparser allows attacker to read out of bound memory

CVE-2025-0633

msrc

8 месяцев назад

Описание отсутствует

SUSE-SU-2025:0845-1

suse-cvrf

8 месяцев назад

Security update for iniparser

EPSS

Процентиль: 12%

0.00054

Низкий