GHSA-5rq6-q8gw-qqpr

Опубликовано: 12 нояб. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.

Ссылки

EPSS

Процентиль: 71%

0.00719

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2024-52533

Дефекты

CWE-120

Связанные уязвимости

CVE-2024-52533

CVSS3: 9.8

ubuntu

7 месяцев назад

gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.

CVE-2024-52533

CVSS3: 7

redhat

8 месяцев назад

gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.

CVE-2024-52533

CVSS3: 9.8

nvd

7 месяцев назад

gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.

CVE-2024-52533

CVSS3: 9.8

msrc

7 месяцев назад

Описание отсутствует

CVE-2024-52533

CVSS3: 9.8

debian

7 месяцев назад

gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one erro ...

EPSS

Процентиль: 71%

0.00719

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2024-52533

Дефекты

CWE-120