Buffer Over-read at parse_rawml.c:1416 in GitHub repository bfabiszewski/libmobi prior to 0.11. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow attackers to read sensitive information from other memory locations or cause a crash.
References
Link | Resource |
---|---|
https://github.com/bfabiszewski/libmobi/commit/fb1ab50e448ddbed746fd27ae07469bc506d838b | Patch Third Party Advisory |
https://huntr.dev/bounties/9a90ffa1-38f5-4685-9c00-68ba9068ce3d | Exploit Issue Tracking Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2022-04-29T10:15:14
Updated: 2022-04-29T10:15:14
Reserved: 2022-04-29T00:00:00
Link: CVE-2022-1534
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-04-29T11:15:10.670
Modified: 2022-05-11T14:15:11.633
Link: CVE-2022-1534
JSON object: View
Redhat Information
No data.