5 matches found
CVE-2024-52296 libosdp has a null pointer deref in osdp_reply_name
libosdp is an implementation of IEC 60839-11-5 OSDP Open Supervised Device Protocol and provides a C library with support for C++, Rust and Python3. At ospdcommon.c, on the osdpreplyname function, any reply id between REPLYACK and REPLYXRD is valid, but names array do not declare all of the range...
CVE-2024-52296 libosdp has a null pointer deref in osdp_reply_name
libosdp is an implementation of IEC 60839-11-5 OSDP Open Supervised Device Protocol and provides a C library with support for C++, Rust and Python3. At ospdcommon.c, on the osdpreplyname function, any reply id between REPLYACK and REPLYXRD is valid, but names array do not declare all of the range...
CVE-2024-52296
LibOSDP (libosdp) prior to version 2.4.0 is affected by a null pointer dereference in ospd_common.c: osdp_reply_name may index a names array beyond declared range for any reply id between REPLY_ACK and REPLY_XRD, resulting in a null name and a crash when name[0] is accessed. The issue enables den...
GHSA-7945-5MCV-F2PP LibOSDP vulnerable to a null pointer deref in osdp_reply_name
Issue: At ospdcommon.c, on the osdpreplyname function, any reply id between REPLYACK and REPLYXRD is valid, but names array do not declare all of the range. On a case of an undefined reply id within the range, name will be null name = namesreplyid - REPLYACK;. Null name will casue a crash on next...
LibOSDP vulnerable to a null pointer deref in osdp_reply_name
Issue: At ospdcommon.c, on the osdpreplyname function, any reply id between REPLYACK and REPLYXRD is valid, but names array do not declare all of the range. On a case of an undefined reply id within the range, name will be null name = namesreplyid - REPLYACK;. Null name will casue a crash on next...