bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to a heap-based buffer overflow and crash when processing a malformed CUE (.cue) file.
References
Link | Resource |
---|---|
https://github.com/extramaster/bchunk/issues/2 | Issue Tracking Patch Third Party Advisory |
https://www.debian.org/security/2017/dsa-4026 | Third Party Advisory |
https://github.com/hessu/bchunk/issues/1 | |
https://lists.debian.org/debian-lts-announce/2017/11/msg00001.html |
Information
Published : 2017-10-28 14:29
Updated : 2018-02-03 18:29
NVD link : CVE-2017-15953
Mitre link : CVE-2017-15953
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
debian
- debian_linux
bchunk_project
- bchunk