Lucene search
Veracode Vulnerability DatabaseVERACODE:28175HistoryDec 06, 2020 - 3:20 a.m.
Arbitrary Code Execution
2020-12-0603:20:50
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.002 Low
EPSS
Percentile
55.3%
dlt-daemon is vulnerable to arbitrary code execution. A buffer overflow in the dlt_filter_load function in dlt_common.c allows arbitrary code execution as fscanf is misused and there is no limit on the number of characters that can be read in a format argument.
| CPE | Name | Operator | Version |
|---|---|---|---|
| dlt-daemon:bullseye | eq | 2.18.5-0.2 | |
| dlt-daemon:sid | eq | 2.18.5-0.2 | |
| dlt-daemon:bullseye | eq | 2.18.5-0.2 | |
| dlt-daemon:sid | eq | 2.18.5-0.2 |
Related
osv
osv
CVE-2020-29394
2020-11-30 19:15:12
dlt-daemon - security update
2022-12-07 00:00:00
cvelist
cvelist
CVE-2020-29394
2020-11-30 00:00:00
nvd
nvd
CVE-2020-29394
2020-11-30 19:15:12
prion
prion
Buffer overflow
2020-11-30 19:15:00
ubuntucve
ubuntucve
CVE-2020-29394
2020-11-30 00:00:00
debiancve
debiancve
CVE-2020-29394
2020-11-30 19:15:12
cve
cve
CVE-2020-29394
2020-11-30 19:15:12
nessus
nessus
Debian DLA-3231-1 : dlt-daemon - LTS security update
2022-12-08 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3231-1)
2022-12-08 00:00:00
debian
debian
[SECURITY] [DLA 3231-1] dlt-daemon security update
2022-12-07 11:30:04