Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-33552HistoryJun 01, 2023 - 3:15 p.m.
CVE-2023-33552
2023-06-0115:15:09
Debian Security Bug Tracker
security-tracker.debian.org
2
cve-2023-33552
erofs
buffer overflow
remote attackers
arbitrary code
filesystem
unix
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
60.5%
Heap Buffer Overflow in the erofs_read_one_data function at data.c in erofs-utils v1.6 allows remote attackers to execute arbitrary code via a crafted erofs filesystem image.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | erofs-utils | <= 1.5-1 | erofs-utils_1.5-1_all.deb |
| Debian | 11 | all | erofs-utils | < 1.2.1-2 | erofs-utils_1.2.1-2_all.deb |
| Debian | 999 | all | erofs-utils | < 1.6-2 | erofs-utils_1.6-2_all.deb |
| Debian | 13 | all | erofs-utils | < 1.6-2 | erofs-utils_1.6-2_all.deb |
Related
veracode
veracode
Out-of-bounds Write
2023-06-18 03:32:51
nvd
nvd
CVE-2023-33552
2023-06-01 15:15:09
ubuntucve
ubuntucve
CVE-2023-33552
2023-06-01 00:00:00
osv
osv
CVE-2023-33552
2023-06-01 15:15:09
cve
cve
CVE-2023-33552
2023-06-01 15:15:09
cvelist
cvelist
CVE-2023-33552
2023-06-01 00:00:00
prion
prion
Heap overflow
2023-06-01 15:15:00
openvas
openvas
Fedora: Security Advisory for erofs-utils (FEDORA-2023-aadd651a30)
2023-09-16 00:00:00
Mageia: Security Advisory (MGASA-2024-0241)
2024-06-28 00:00:00
Fedora: Security Advisory for erofs-utils (FEDORA-2023-f838326992)
2023-09-09 00:00:00
nessus
nessus
Fedora 39 : erofs-utils (2023-aadd651a30)
2023-11-07 00:00:00
Fedora 38 : erofs-utils (2023-f838326992)
2023-09-07 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: erofs-utils-1.6-3.fc39
2023-09-15 19:04:12
[SECURITY] Fedora 38 Update: erofs-utils-1.6-3.fc38
2023-09-07 01:29:57
mageia
mageia
Updated erofs-utils packages fix security vulnerabilities
2024-06-28 05:41:31
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
60.5%
Related for DEBIANCVE:CVE-2023-33552