Описание
libcurl's ASN1 parser code has the GTime2str() function, used for parsing an ASN.1 Generalized Time field. If given an syntactically incorrect field, the parser might end up using -1 for the length of the time fraction, leading to a strlen() getting performed on a pointer to a heap buffer area that is not (purposely) null terminated. This flaw most likely leads to a crash, but can also lead to heap contents getting returned to the application when CURLINFO_CERTINFO is used.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 8.9.1-2ubuntu1 |
| esm-infra-legacy/trusty | not-affected | 7.35.0-1ubuntu2.20+esm18 |
| esm-infra/bionic | released | 7.58.0-2ubuntu3.24+esm5 |
| esm-infra/focal | not-affected | 7.68.0-1ubuntu2.23 |
| esm-infra/xenial | released | 7.47.0-1ubuntu2.19+esm13 |
| focal | released | 7.68.0-1ubuntu2.23 |
| jammy | released | 7.81.0-1ubuntu1.17 |
| noble | released | 8.5.0-2ubuntu10.2 |
| oracular | released | 8.9.1-2ubuntu1 |
| plucky | released | 8.9.1-2ubuntu1 |
Показывать по
6.5 Medium
CVSS3
Связанные уязвимости
libcurl's ASN1 parser code has the `GTime2str()` function, used for parsing an ASN.1 Generalized Time field. If given an syntactically incorrect field, the parser might end up using -1 for the length of the *time fraction*, leading to a `strlen()` getting performed on a pointer to a heap buffer area that is not (purposely) null terminated. This flaw most likely leads to a crash, but can also lead to heap contents getting returned to the application when [CURLINFO_CERTINFO](https://curl.se/libcurl/c/CURLINFO_CERTINFO.html) is used.
libcurl's ASN1 parser code has the `GTime2str()` function, used for parsing an ASN.1 Generalized Time field. If given an syntactically incorrect field, the parser might end up using -1 for the length of the *time fraction*, leading to a `strlen()` getting performed on a pointer to a heap buffer area that is not (purposely) null terminated. This flaw most likely leads to a crash, but can also lead to heap contents getting returned to the application when [CURLINFO_CERTINFO](https://curl.se/libcurl/c/CURLINFO_CERTINFO.html) is used.
libcurl's ASN1 parser code has the `GTime2str()` function, used for pa ...
6.5 Medium
CVSS3