5 matches found
CVE-2024-52296
LibOSDP (libosdp) prior to version 2.4.0 is affected by a null pointer dereference in ospd_common.c: osdp_reply_name may index a names array beyond declared range for any reply id between REPLY_ACK and REPLY_XRD, resulting in a null name and a crash when name[0] is accessed. The issue enables den...
CVE-2024-52296 libosdp has a null pointer deref in osdp_reply_name
libosdp is an implementation of IEC 60839-11-5 OSDP Open Supervised Device Protocol and provides a C library with support for C++, Rust and Python3. At ospdcommon.c, on the osdpreplyname function, any reply id between REPLYACK and REPLYXRD is valid, but names array do not declare all of the range...
CVE-2024-52296 libosdp has a null pointer deref in osdp_reply_name
libosdp is an implementation of IEC 60839-11-5 OSDP Open Supervised Device Protocol and provides a C library with support for C++, Rust and Python3. At ospdcommon.c, on the osdpreplyname function, any reply id between REPLYACK and REPLYXRD is valid, but names array do not declare all of the range...
LibOSDP vulnerable to a null pointer deref in osdp_reply_name
Issue: At ospdcommon.c, on the osdpreplyname function, any reply id between REPLYACK and REPLYXRD is valid, but names array do not declare all of the range. On a case of an undefined reply id within the range, name will be null name = namesreplyid - REPLYACK;. Null name will casue a crash on next...
GHSA-7945-5MCV-F2PP LibOSDP vulnerable to a null pointer deref in osdp_reply_name
Issue: At ospdcommon.c, on the osdpreplyname function, any reply id between REPLYACK and REPLYXRD is valid, but names array do not declare all of the range. On a case of an undefined reply id within the range, name will be null name = namesreplyid - REPLYACK;. Null name will casue a crash on next...