Advancecomp v2.3 was discovered to contain a heap buffer overflow via le_uint32_read at /lib/endianrw.h.
References
Link | Resource |
---|---|
https://github.com/Cvjark/Poc/blob/main/advancecomp/CVE-2022-35015.md | Exploit Third Party Advisory |
https://drive.google.com/file/d/1pxNOlyl5mWXdVwkmCD4ZuXEPxI3PZAac/view?usp=sharing | Exploit Third Party Advisory |
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KQHLMLFHPV5C7PTBZML6U72QT6VNEOEF/ | Mailing List Third Party Advisory |
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DYG2XAL4MBS7ADGJWYRUKBLDTBJFPJER/ | Mailing List Third Party Advisory |
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XP42AC5VPTY45QKMRL3W4G4EXIUMFXRE/ | Mailing List Third Party Advisory |
Information
Published : 2022-08-29 07:15
Updated : 2023-01-09 09:47
NVD link : CVE-2022-35015
Mitre link : CVE-2022-35015
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
advancemame
- advancecomp
fedoraproject
- fedora