2 matches found
CVE-2023-26257
CVE-2023-26257 affects the dlt-daemon from Connected Vehicle Systems Alliance (COVESA; formerly GENIVI) up to version 2.18.8. The root cause is that dynamic memory allocated in dlt-control-common.c is not released, potentially enabling a denial of service (availability impact high) over a network...
CVE-2023-36321
CVE-2023-36321 affects Connected Vehicle Systems Alliance (COVESA) up to version 2.18.8 in the dlt-daemon component. Root cause: a buffer overflow in /shared/dlt_common.c. Impact described as high (availability impact), with network attack vector and no user interaction. Public references corrobo...