CVE-2017-12471

The cnb_parse_lev function in CCN-lite before 2.00 allows context-dependent attackers to have unspecified impact by leveraging failure to check for out-of-bounds conditions, which triggers an invalid read in the hexdump function.
References
Link Resource
https://github.com/cn-uofbasel/ccn-lite/issues/137 Third Party Advisory
https://github.com/cn-uofbasel/ccn-lite/releases/tag/2.0.0 Release Notes Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:ccn-lite:ccn-lite:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-02-07 17:29

Updated : 2024-02-04 19:46


NVD link : CVE-2017-12471

Mitre link : CVE-2017-12471

CVE.ORG link : CVE-2017-12471


JSON object : View

Products Affected

ccn-lite

  • ccn-lite
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer