3 matches found
CVE-2023-45841
Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...
CVE-2023-45841
CVE-2023-45841: Cisco Talos and Red Hat notes describe data integrity vulnerabilities in Buildroot’s package hash checking for Buildroot 2023.08.1 and the dev commit 622698d7847, enabling a MITM attacker to substitute package sources and cause arbitrary code execution during the build, with the i...
CVE-2023-45841
Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...