Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.
CVSS Information
N/A
Vulnerability Type
跨界内存读
Vulnerability Title
openEuler 缓冲区错误漏洞
Vulnerability Description
openEuler是开放原子开源基金会的一款操作系统。 开放原子开源基金会 openEuler 20.03-LTS-SP1,20.03-LTS-SP3和22.03-LTS版本存在安全漏洞,该漏洞源于攻击者如果提交一个头结构中大小为0的特制tar文件,可能能够触发对变量 gnu_longname的malloc(0)调用,从而导致越界。
CVSS Information
N/A
Vulnerability Type
N/A