5 matches found
libngtcp2-16-1.10.0-1.1 on GA media (moderate)
libngtcp2-16-1.10.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:14766-1 Rating: moderate Cross-References: CVE-2024-52811 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
CVE-2024-52811
The ngtcp2 project is an effort to implement IETF QUIC protocol in C. In affected versions acks are not validated before being written to the qlog leading to a buffer overflow. In ngtcp2conn::connrecvpkt for an ACK, there was new logic that got added to skip connrecvack if an ack has already been...
CVE-2024-52811
creationtimestamp| type| source ---|---|--- 2024-11-25 18:57:50+00:00| seen| https://infosec.exchange/users/cve/statuses/113545122233349276...
CVE-2024-52811
CVE-2024-52811 affects ngtcp2 (QUIC in C). A patch added in conn_recv_pkt skips ngtcp2_pkt_validate_ack for certain acks, allowing an invalid ack to reach qlog, where ngtcp2_qlog::write_ack_frame can underflow when largest_ack=0 and first_ack_range=15, overwriting a heap buffer and causing heap o...
CVE-2024-52811 Acks not validated before logged to qlog leads to buffer overflow in ngtcp2
The ngtcp2 project is an effort to implement IETF QUIC protocol in C. In affected versions acks are not validated before being written to the qlog leading to a buffer overflow. In ngtcp2conn::connrecvpkt for an ACK, there was new logic that got added to skip connrecvack if an ack has already been...