kodi is vulnerable to Denial of Service (DoS) attacks. A heap buffer overflow vulnerability allows an attacker to cause denial of service conditions due to an improper length of the value passed to the offset argument.
github.com/fritsch/xbmc/commit/367cc80d66b0310b460f587fea44274b442951f1
github.com/fritsch/xbmc/commit/54df944584fc9fecd4cd5d69c2289f0934de305b
github.com/xbmc/xbmc/commit/8c2aafb6d4987833803e037c923aaf83f9ff41e1
github.com/xbmc/xbmc/issues/22377
github.com/xbmc/xbmc/pull/22380
github.com/xbmc/xbmc/pull/22380/commits/00fec1dbdd1df827872c7b55ad93059636dfc076
github.com/xbmc/xbmc/pull/22380/commits/7e5f9fbf9aaa3540aab35e7504036855b23dcf60
lists.debian.org/debian-lts-announce/2024/01/msg00009.html
security-tracker.debian.org/tracker/CVE-2023-23082