N/A

An issue was discovered in Connected Vehicle Systems Alliance (COVESA) dlt-daemon through 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a NULL pointer dereference,

N/A

N/A

dlt-daemon 代码问题漏洞

dlt-daemon是GlobalGENIVI社区的ECU的DLT通信接口。它从运行在ECU上的一个或多个DLT用户收集并缓冲日志消息，并根据DLT客户机的请求将它们提供给它们。 dlt-daemon 2.18.8及之前版本存在代码问题漏洞，该漏洞源于由于缺少验证检查，DLT文件解析器有问题时，可能会创建导致进程崩溃的恶意DLT文件，存在空指针取消引用问题。

N/A

N/A