RSS   Vulnerabilities for 'Bsdiff'   RSS

2020-09-16
 
CVE-2020-14315

CWE-787
 

 
A memory corruption vulnerability is present in bspatch as shipped in Colin Percival�??s bsdiff tools version 4.3. Insufficient checks when handling external inputs allows an attacker to bypass the sanity checks in place and write out of a dynamically allocated buffer boundaries.

 


Copyright 2024, cxsecurity.com

 

Back to Top