Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Integer overflow in the read_fragment_table_4 function in unsquash-4.c in Squashfs and sasquatch allows remote attackers to cause a denial of service (application crash) via a crafted input, which triggers a stack-based buffer overflow.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Squashfs和sasquatch 数字错误漏洞
Vulnerability Description
Squashfs是软件开发者Phillip Lougher和Robert Lougher共同研发的一套供Linux核心使用的开源只读压缩文件系统,它能够为文件系统内的文件、inode及目录结构进行压缩。sasquatch是Squashfs的一个改进版。 Squashfs和sasquatch中的unsquash-4.c文件的‘read_fragment_table_4’函数存在整数溢出漏洞。远程攻击者可借助特制的输入利用该漏洞造成拒绝服务(应用程序崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A