Lucene search

Ubuntu.comUB:CVE-2024-37676

HistoryJun 21, 2024 - 12:00 a.m.

CVE-2024-37676

2024-06-2100:00:00

ubuntu.com

htop-dev

out-of-bounds access

header_populatefromsettings

unix

6.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.7%

An issue in htop-dev htop v.2.20 allows a local attacker to cause an
out-of-bounds access in the Header_populateFromSettings function.

Author	Note
	Priority reason: It is only “exploitable” with a malformed config file

OSVersionArchitecturePackageVersionFilename
ubuntu20.04noarchhtop< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	20.04	noarch	htop	< any	UNKNOWN

References

htop.com

gist.github.com/Cirno9-dev/0109cde3bdbe7eccc6770515106740b7

github.com/htop-dev/htop

launchpad.net/bugs/cve/CVE-2024-37676

nvd.nist.gov/vuln/detail/CVE-2024-37676

security-tracker.debian.org/tracker/CVE-2024-37676

www.cve.org/CVERecord?id=CVE-2024-37676