CVE-2012-2114Improper Restriction of Operations within the Bounds of a Memory Buffer in Musl

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
7.5HIGHNVD
EPSS
1.0%
top 22.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Etalabs Musl
Timeline
PublishedAug 31
Latest updateMay 17

Description

Stack-based buffer overflow in fprintf in musl before 0.8.8 and earlier allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string to an unbuffered stream such as stderr.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDetalabs/musl0.8.8

🔴Vulnerability Details

2
GHSA
GHSA-xm6q-pww3-56gm: Stack-based buffer overflow in fprintf in musl before 02022-05-17
CVEList
CVE-2012-2114: Stack-based buffer overflow in fprintf in musl before 02012-08-31
CVE-2012-2114 — Etalabs Musl vulnerability | cvebase