CVE-2023-45925 — NULL Pointer Dereference in MC

CWE-476 — NULL Pointer Dereference5 documents4 sources

Severity

—N/A

No vector

EPSS

0.1%

top 81.82%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian MC

Timeline

PublishedMar 27

Description

GNU Midnight Commander 4.8.29-146-g299d9a2fb was discovered to contain a NULL pointer dereference via the function x_error_handler() at tty/x11conn.c. NOTE: this is disputed because it should be categorized as a usability problem (an X operation silently fails).

Affected Packages1 packages

▶debiandebian/mc

🔴Vulnerability Details

GHSA

GHSA-q22h-9rc9-jpmp: GNU Midnight Commander 4↗2024-03-27

▶

OSV

CVE-2023-45925: ** DISPUTED ** GNU Midnight Commander 4↗2024-03-27

▶

OSV

CVE-2023-45925: GNU Midnight Commander 4↗2024-03-27

▶

📋Vendor Advisories

Debian

CVE-2023-45925: mc - GNU Midnight Commander 4.8.29-146-g299d9a2fb was discovered to contain a NULL po...↗2023

▶