Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Off-by-one error in the extracthalf function in dpkg-deb/extract.c in the dpkg-deb component in Debian dpkg 1.16.x before 1.16.17 and 1.17.x before 1.17.26 allows remote attackers to execute arbitrary code via the archive magic version number in an "old-style" Debian binary package, which triggers a stack-based buffer overflow.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Debian dpkg 差一错误漏洞
Vulnerability Description
Debian dpkg是美国软件开发者伊恩-默多克(Ian Murdock)所研发的一款Debian软件包管理器。 Debian dpkg 1.16.17之前1.16.x版本和1.17.26之前1.17.x版本的dpkg-deb/extract.c文件中的‘extracthalf’函数存在差一错误漏洞。远程攻击者可借助‘old-style’Debian二进制数据包中的archive magic版本号利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A