Heap-based buffer overflow in hfaxd in HylaFAX+ 5.2.4 through 5.5.3, when using LDAP authentication, might allow remote attackers to cause a denial of service (child hang) or execute arbitrary code via a long USER command.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | hylafax | < 3:6.0.7-5 | hylafax_3:6.0.7-5_all.deb |
Debian | 11 | all | hylafax | < 3:6.0.7-3.1 | hylafax_3:6.0.7-3.1_all.deb |
Debian | 10 | all | hylafax | < 3:6.0.6-8.1 | hylafax_3:6.0.6-8.1_all.deb |
Debian | 999 | all | hylafax | < 3:6.0.7-9 | hylafax_3:6.0.7-9_all.deb |
Debian | 13 | all | hylafax | < 3:6.0.7-9 | hylafax_3:6.0.7-9_all.deb |