Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Valve's Game Networking Sockets prior to version v1.2.0 improperly handles unreliable segments with negative offsets in function SNP_ReceiveUnreliableSegment(), leading to a Heap-Based Buffer Underflow and a free() of memory not from the heap, resulting in a memory corruption and probably even a remote code execution.
CVSS Information
N/A
Vulnerability Type
释放并不在堆上的内存
Vulnerability Title
ValveSoftware GameNetworkingSockets 缓冲区错误漏洞
Vulnerability Description
Valvesoftware ValveSoftware GameNetworkingSockets是美国维尔福(Valvesoftware)公司的一个用于游戏传递数据的传输层支持软件。 Valves Game Networking Sockets 1.2.0之前版本存在安全漏洞,该漏洞源于SNP ReceiveUnreliableSegment()函数中用负偏移不当处理不可靠的段,导致基于堆的缓冲区下流和空闲()的内存不是来自堆,导致内存损坏,甚至可能导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A