CVE-2021-43612
CVSS V2 None
CVSS V3 None
Description
In lldpd before 1.0.13, when decoding SONMP packets in the sonmp_decode function, it's possible to trigger an out-of-bounds heap read via short SONMP packets.
Overview
- CVE ID
- CVE-2021-43612
- Assigner
- cve@mitre.org
- Vulnerability Status
- Analyzed
- Published Version
- 2023-04-15T22:15:07
- Last Modified Date
- 2023-04-26T14:31:07
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| cpe:2.3:a:lldpd_project:lldpd:*:*:*:*:*:*:*:* | 1 | OR | 1.0.13 | |
| cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:* | 1 | OR |
References
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2021-43612 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43612 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-04-17 04:47:44 | Added to TrackCVE | |||
| 2023-04-17 14:01:27 | 2023-04-17T13:12:43 | CVE Modified Date | updated | |
| 2023-04-17 14:01:27 | Received | Awaiting Analysis | Vulnerability Status | updated |
| 2023-04-19 04:26:05 | 2023-04-19T04:15:31 | CVE Modified Date | updated | |
| 2023-04-19 04:26:06 | References | updated | ||
| 2023-04-20 06:01:04 | 2023-04-20T05:15:37 | CVE Modified Date | updated | |
| 2023-04-20 06:01:05 | References | updated | ||
| 2023-04-20 08:00:52 | 2023-04-20T07:15:07 | CVE Modified Date | updated | |
| 2023-04-20 08:00:55 | References | updated | ||
| 2023-04-20 15:01:09 | Awaiting Analysis | Undergoing Analysis | Vulnerability Status | updated |
| 2023-04-26 15:00:51 | 2023-04-26T14:31:07 | CVE Modified Date | updated | |
| 2023-04-26 15:00:51 | Undergoing Analysis | Analyzed | Vulnerability Status | updated |
| 2023-04-26 15:00:53 | Weakness Enumeration | new | ||
| 2023-04-26 15:00:55 | CPE Information | updated |