Описание
A buffer overflow vulnerability exists in the handling of wildcard backend hosts of SNIProxy 0.6.0-2 and the master branch (commit: 822bb80df9b7b345cc9eba55df74a07b498819ba). A specially crafted HTTP or TLS packet can lead to arbitrary code execution. An attacker could send a malicious packet to trigger this vulnerability.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | not-affected | 0.6.1+git20240321-0.1 |
| esm-apps/bionic | released | 0.5.0-2ubuntu0.1~esm1 |
| esm-apps/focal | released | 0.6.0-1ubuntu0.1 |
| esm-apps/jammy | released | 0.6.0-2ubuntu0.22.04.1 |
| esm-apps/noble | released | 0.6.0-2.1build2 |
| focal | released | 0.6.0-1ubuntu0.1 |
| jammy | released | 0.6.0-2ubuntu0.22.04.1 |
| kinetic | released | 0.6.0-2ubuntu0.22.10.1 |
| lunar | released | 0.6.0-2ubuntu0.23.04.1 |
Показывать по
9.8 Critical
CVSS3
Связанные уязвимости
A buffer overflow vulnerability exists in the handling of wildcard backend hosts of SNIProxy 0.6.0-2 and the master branch (commit: 822bb80df9b7b345cc9eba55df74a07b498819ba). A specially crafted HTTP or TLS packet can lead to arbitrary code execution. An attacker could send a malicious packet to trigger this vulnerability.
A buffer overflow vulnerability exists in the handling of wildcard bac ...
A buffer overflow vulnerability exists in the handling of wildcard backend hosts of SNIProxy 0.6.0-2 and the master branch (commit: 822bb80df9b7b345cc9eba55df74a07b498819ba). A specially crafted HTTP, TLS or DTLS packet can lead to arbitrary code execution. An attacker could send a malicious packet to trigger this vulnerability.
9.8 Critical
CVSS3