2 matches found
CVE-2017-18198
CVE-2017-18198 affects libcdio’s ISO handling: print_iso9660_recurse in iso-info.c in GNU libcdio before 1.0.0 allows remote attackers to cause a heap-based buffer over-read (and possibly other impact) by supplying a crafted ISO file. The connected advisories confirm multiple vendors package libc...
CVE-2024-36600
CVE-2024-36600 is a buffer overflow in libcdio 2.2.0 that allows an attacker to execute arbitrary code by crafting an ISO 9660 image. The issue stems from improper handling during parsing, leading to a potential code execution path. A fix exists in libcdio 2.3.0. Affected component: libcdio (libr...