漏洞标题
libzvbi io-sim.c 中 vbi_capture_sim_load_caption 整型溢出漏洞
漏洞描述信息
在 libzvbi 版本 0.2.43 及以下版本中发现了一个被归类为严重的漏洞。该漏洞影响 src/io-sim.c 文件中的 vbi_capture_sim_load_caption 函数。此漏洞可导致整数溢出。该漏洞可以通过远程方式发起攻击。漏洞利用细节已公开,有可能被利用。升级到 0.2.44 版本可以解决此问题。补丁标识符为 ca1672134b3e2962cd392212c73f44f8f4cb489f。建议升级受影响的组件。代码维护人员事先已被告知这些问题,他们反应迅速且非常专业。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
漏洞类别
整数溢出或超界折返
漏洞标题
libzvbi io-sim.c vbi_capture_sim_load_caption integer overflow
漏洞描述信息
A vulnerability classified as critical has been found in libzvbi up to 0.2.43. This affects the function vbi_capture_sim_load_caption of the file src/io-sim.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 0.2.44 is able to address this issue. The identifier of the patch is ca1672134b3e2962cd392212c73f44f8f4cb489f. It is recommended to upgrade the affected component. The code maintainer was informed beforehand about the issues. She reacted very fast and highly professional.
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
漏洞类别
整数溢出或超界折返