CVE-2023-5941

🗓️ 08 Nov 2023 08:52:26Reported by freebsdType

Versions of FreeBSD 12.4-RELEASE prior to 12.4-RELEASE-p7 and FreeBSD 13.2-RELEASE prior to 13.2-RELEASE-p5 are vulnerable to heap buffer overflow through __sflush() stdio function in libc

Reporter	Title	Published	Views	Family All 10
FreeBSD	FreeBSD -- libc stdio buffer overflow	8 Nov 202300:00	–	freebsd
CNNVD	FreeBSD Security Vulnerabilities	8 Nov 202300:00	–	cnnvd
Cvelist	CVE-2023-5941 libc stdio buffer overflow	8 Nov 202308:52	–	cvelist
FreeBSD Advisory	FreeBSD-SA-23:15.stdio	8 Nov 202300:00	–	freebsd_advisory
Tenable Nessus	FreeBSD : FreeBSD -- libc stdio buffer overflow (5afcc9a4-7e04-11ee-8e38-002590c1f29c)	8 Nov 202300:00	–	nessus
NVD	CVE-2023-5941	8 Nov 202309:15	–	nvd
OSV	CVE-2023-5941	8 Nov 202309:15	–	osv
Prion	Heap overflow	8 Nov 202309:15	–	prion
Positive Technologies	PT-2023-6926 · Freebsd · Freebsd	7 Nov 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-5941	23 May 202502:39	–	redhatcve

NVD

Node

freebsd freebsdRange<12.4

freebsd freebsdRange13.0–13.2

freebsd freebsdMatch12.4-

freebsd freebsdMatch12.4p1

freebsd freebsdMatch12.4p2

freebsd freebsdMatch12.4p3

freebsd freebsdMatch12.4p4

freebsd freebsdMatch12.4p5

freebsd freebsdMatch12.4p6

freebsd freebsdMatch12.4rc2-p1

freebsd freebsdMatch12.4rc2-p2

freebsd freebsdMatch13.2-

freebsd freebsdMatch13.2p1

freebsd freebsdMatch13.2p2

freebsd freebsdMatch13.2p3

freebsd freebsdMatch13.2p4

[
  {
    "defaultStatus": "unknown",
    "modules": [
      "libc"
    ],
    "product": "FreeBSD",
    "vendor": "FreeBSD",
    "versions": [
      {
        "lessThan": "p7",
        "status": "affected",
        "version": "12.4-RELEASE",
        "versionType": "release"
      },
      {
        "lessThan": "p5",
        "status": "affected",
        "version": "13.2-RELEASE",
        "versionType": "release"
      }
    ]
  }
]

Source	Link
security	www.security.netapp.com/advisory/ntap-20231214-0004/
security	www.security.freebsd.org/advisories/FreeBSD-SA-23:15.stdio.asc

21 Nov 2024 08:42Current

10High risk

Vulners AI Score10

CVSS 3.19.8

EPSS0.00869