CVE-2018-10689

blktrace (aka Block IO Tracing) 1.2.0, as used with the Linux kernel and Android, has a buffer overflow in the dev_map_read function in btt/devmap.c because the device and devno arrays are too small, as demonstrated by an invalid free when using the btt program with a crafted file.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:blktrace_project:blktrace:1.2.0:*:*:*:*:android:*:*
cpe:2.3:a:blktrace_project:blktrace:1.2.0:*:*:*:*:linux:*:*

Information

Published : 2018-05-03 00:29

Updated : 2021-07-08 00:15


NVD link : CVE-2018-10689

Mitre link : CVE-2018-10689


JSON object : View

CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Advertisement

dedicated server usa

Products Affected

blktrace_project

  • blktrace