3 matches found
CVE-2018-15157
The libfsclfsblockread function in libfsclfsblock.c in libfsclfs before 2018-07-25 allows remote attackers to cause a heap-based buffer over-read via a crafted clfs file. NOTE: the vendor has disputed this as described in the GitHub issue comments...
CVE-2018-15157
The libfsclfsblockread function in libfsclfsblock.c in libfsclfs before 2018-07-25 allows remote attackers to cause a heap-based buffer over-read via a crafted clfs file. NOTE: the vendor has disputed this as described in the GitHub issue comments...
CVE-2018-15157
Summary (CVE-2018-15157) : The libfsclfs_block_read function in libfsclfs_block.c (libfsclfs) is vulnerable to a heap-based buffer over-read when processing a crafted CLFS file, affecting versions prior to 2018-07-25. The issue is exploitable remotely via a crafted clfs file, with vendor disputes...