CVE-2010-3846

Array index error in the apply_rcs_change function in rcs.c in CVS 1.11.23 allows local users to gain privileges via an RCS file containing crafted delta fragment changes that trigger a heap-based buffer overflow.
Configurations

Configuration 1 (hide)

cpe:2.3:a:nongnu:cvs:1.11.23:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-11-05 17:00

Updated : 2024-02-04 17:54


NVD link : CVE-2010-3846

Mitre link : CVE-2010-3846

CVE.ORG link : CVE-2010-3846


JSON object : View

Products Affected

nongnu

  • cvs
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer