CVE-2017-7555

Augeas versions up to and including 1.8.0 are vulnerable to heap-based buffer overflow due to improper handling of escaped strings. Attacker could send crafted strings that would cause the application using augeas to copy past the end of a buffer, leading to a crash or possible code execution.
Configurations

Configuration 1 (hide)

cpe:2.3:a:augeas:augeas:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-08-17 19:29

Updated : 2024-02-04 19:29


NVD link : CVE-2017-7555

Mitre link : CVE-2017-7555

CVE.ORG link : CVE-2017-7555


JSON object : View

Products Affected

augeas

  • augeas
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-122

Heap-based Buffer Overflow