漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
A memory corruption vulnerability is present in bspatch as shipped in Colin Percival’s bsdiff tools version 4.3. Insufficient checks when handling external inputs allows an attacker to bypass the sanity checks in place and write out of a dynamically allocated buffer boundaries.
CVSS Information
N/A
Vulnerability Type
跨界内存写
Vulnerability Title
bsdiff 缓冲区错误漏洞
Vulnerability Description
bsdiff是一款用于构建修补程序并将其应用于二进制文件的库。 bsdiff 4.3版本中的bspatch存在安全漏洞,该漏洞源于未充分检查外部输入。攻击者可利用该漏洞绕过完整性检查。
CVSS Information
N/A
Vulnerability Type
N/A