2 matches found
SUSE CVE-2020-17467
An issue was discovered in FNET through 4.6.4. The code for processing the hostname from an LLMNR request doesn't check for '\0' termination. Therefore, the deduced length of the hostname doesn't reflect the correct length of the actual data. This may lead to Information Disclosure in fnetllmnrpo...
CVE-2020-17467
The CVE-2020-17467 issue affects the FNET stack up to version 4.6.4, where hostname processing for LLMNR requests does not terminate with a null character. This can cause the code path in fnet_llmnr_poll to deduce an incorrect hostname length, enabling information disclosure in responses to malic...