Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-54494

Опубликовано: 25 авг. 2025
Источник: debian

Описание

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 9205 of biosig.c on the current master branch (35a819fa), when the Tag is 133: else if (tag==133) //0x85 { curPos += ifread(buf,1,len,hdr);

Пакеты

ПакетСтатусВерсия исправленияРелизТип
biosigunfixedpackage
biosigno-dsatrixiepackage
biosigno-dsabookwormpackage
biosigpostponedbullseyepackage

Примечания

  • https://sourceforge.net/p/biosig/mailman/message/59224259/

  • https://sourceforge.net/p/biosig/code/ci/ba2f1c381b10f5ab50c94be3291b2560af0f7a96/

  • https://sourceforge.net/p/biosig/code/ci/7d1dccb1080c7b9baf23676da4184d76f3c886b2/

  • https://sourceforge.net/p/biosig/code/ci/1d9af2b1747f8fd1a632c71bc78925c38359b315/

Связанные уязвимости

ubuntu логотип

CVE-2025-54494

CVSS3: 9.8
ubuntu
6 месяцев назад

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 9205 of biosig.c on the current master branch (35a819fa), when the Tag is 133: else if (tag==133) //0x85 { curPos += ifread(buf,1,len,hdr);

nvd логотип

CVE-2025-54494

CVSS3: 9.8
nvd
6 месяцев назад

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 9205 of biosig.c on the current master branch (35a819fa), when the Tag is 133: else if (tag==133) //0x85 { curPos += ifread(buf,1,len,hdr);

github логотип

GHSA-3584-vvm3-84x2

CVSS3: 9.8
github
6 месяцев назад

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 9205 of biosig.c on the current master branch (35a819fa), when the Tag is 133: else if (tag==133) //0x85 { curPos += ifread(buf,1,len,hdr);