In The Sleuth Kit (TSK) 4.4.2, opening a crafted ISO 9660 image triggers an out-of-bounds read in iso9660_proc_dir() in tsk/fs/iso9660_dent.c in libtskfs.a, as demonstrated by fls.
CPE | Name | Operator | Version |
---|---|---|---|
debian_linux | eq | 9.0 | |
the_sleuth_kit | eq | 4.4.2 |