Lucene search

K

Veracode Vulnerability DatabaseVERACODE:26256

HistoryAug 06, 2020 - 9:39 p.m.

Buffer Overflows

2020-08-0621:39:01

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

13

EPSS

0.001

Percentile

25.0%

nfdump is vulnerable to Buffer Overflow. The impact is: The impact could range from a denial of service to local code execution. The component is: nfx.c:546, nffile_inline.c:83, minilzo.c (redistributed). The attack vector is: nfdump must read and process a specially crafted file.

References

github.com/phaag/nfdump/issues/104

lists.debian.org/debian-lts-announce/2020/09/msg00021.html

lists.fedoraproject.org/archives/list/[email protected]/message/ULSZMKA7P7REJMANVL7D6WMZ2L7IRSET/

lists.fedoraproject.org/archives/list/[email protected]/message/YTONOGJU5FSMFNRCT6OHXYUMDRKH4RPA/

security.gentoo.org/glsa/202003-17

EPSS

0.001

Percentile

25.0%

Related for VERACODE:26256

cve1 ubuntucve1 redhatcve1 nvd1 prion1 cvelist1 alpinelinux1 debiancve1 osv2 debian1 nessus4 fedora2 gentoo1 openvas3