squashfs-tools -- Integer overflow

2017-03-17T00:00:00
ID 317487C6-85CA-11EB-80FA-14DAE938EC40
Type freebsd
Reporter FreeBSD
Modified 2017-03-17T00:00:00

Description

Phillip Lougher reports:

Integer overflow in the read_fragment_table_4 function in unsquash-4.c in Squashfs and sasquatch allows remote attackers to cause a denial of service (application crash) via a crafted input, which triggers a stack-based buffer overflow.