CVE-2015-1817Improper Restriction of Operations within the Bounds of a Memory Buffer in Musl

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer6 documents6 sources
Severity
9.8CRITICALNVD
EPSS
0.5%
top 36.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Musl-libc Musl
Timeline
PublishedAug 18
Latest updateMay 17

Description

Stack-based buffer overflow in the inet_pton function in network/inet_pton.c in musl libc 0.9.15 through 1.0.4, and 1.1.0 through 1.1.7 allows attackers to have unspecified impact via unknown vectors.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

Debianmusl-libc/musl< 1.1.5-2+3
NVDmusl-libc/musl14 versions+13

Patches

Patch: www.openwall.comPatch: www.openwall.com

🔴Vulnerability Details

3
GHSA
GHSA-6wj9-53h7-6h32: Stack-based buffer overflow in the inet_pton function in network/inet_pton2022-05-17
OSV
CVE-2015-1817: Stack-based buffer overflow in the inet_pton function in network/inet_pton2017-08-18
CVEList
CVE-2015-1817: Stack-based buffer overflow in the inet_pton function in network/inet_pton2017-08-18

📋Vendor Advisories

2
Ubuntu
musl vulnerabilities2021-03-15
Debian
CVE-2015-1817: musl - Stack-based buffer overflow in the inet_pton function in network/inet_pton.c in ...2015
CVE-2015-1817 — Musl-libc Musl vulnerability | cvebase