CVE-2023-22652

CVSS V2 None CVSS V3 None

Description

A Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in openSUSE libeconf leads to DoS via malformed config files. This issue affects libeconf: before 0.5.2.

Overview

CVE ID
CVE-2023-22652

Assigner
suse

Vulnerability Status
PUBLISHED

Published Version
2023-06-01T11:51:15.111Z

Last Modified Date
2023-06-01T11:51:15.111Z

Weakness Enumerations

CWE	URL
CWE-120	http://cwe.mitre.org/data/definitions/120.html

References

Reference URL	Reference Tags
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-22652
https://https://github.com/openSUSE/libeconf/issues/177
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SMG5256D5I3GFA3RBAJQ2WYPJDYAIL74/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SDD5GL5T3V5XZ3VFA4HPE6YGJ2K4HHPC/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YAYW7X753Z6GOJKVLQPXBDHISN6ZT233/

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-22652
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22652

History

Created	Old Value	New Value	Data Type	Notes
2024-06-25 14:32:37				Added to TrackCVE