The vulnerability of the Azure-c-shared-utility library in the Azure SDK for C development software package allows a attacker to execute arbitrary code.

The vulnerability of the Azure-c-shared-utility library in the Azure SDK for C development software package is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code using the buffer length...

AZL-70178 CVE-2024-29195 affecting package python-uamqp 1.5.1-4

The azure-c-shared-utility is a C library for AMQP/MQTT communication to Azure Cloud Services. This library may be used by the Azure IoT C SDK for communication between IoT Hub and IoT Hub devices. An attacker can cause an integer wraparound or under-allocation or heap buffer overflow due to...

CVE-2024-29195

The CVE-2024-29195 advisory concerns the azure-c-shared-utility C library used by the Azure IoT C SDK for AMQP/MQTT communication. The described issue is an integer wraparound/under-allocation/heap buffer overflow stemming from vulnerable parameter checking in the buffer length handling, which co...