Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
libzvbi _vbi_strndup_iconv integer overflow
Vulnerability Description
A vulnerability was found in libzvbi up to 0.2.43. It has been rated as problematic. Affected by this issue is the function _vbi_strndup_iconv. The manipulation leads to integer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 0.2.44 is able to address this issue. It is recommended to upgrade the affected component. The code maintainer was informed beforehand about the issues. She reacted very fast and highly professional.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
Vulnerability Type
整数溢出或超界折返
Vulnerability Title
libzvbi 输入验证错误漏洞
Vulnerability Description
libzvbi是zapping-vbi开源的一个 VBI 实用程序。 libzvbi 0.2.43及之前版本存在输入验证错误漏洞,该漏洞源于整数溢出,可能导致远程攻击。
CVSS Information
N/A
Vulnerability Type
N/A