A heap buffer overflow vulnerability in Kodi Home Theater Software up to 19.5 allows attackers to cause a denial of service due to an improper length of the value passed to the offset argument.
References
Link | Resource |
---|---|
https://github.com/xbmc/xbmc/commit/8c2aafb6d4987833803e037c923aaf83f9ff41e1 | Patch Third Party Advisory |
https://github.com/xbmc/xbmc/issues/22377 | Exploit Issue Tracking Patch Third Party Advisory |
https://github.com/xbmc/xbmc/pull/22380 | Patch Third Party Advisory |
https://github.com/xbmc/xbmc/pull/22380/commits/00fec1dbdd1df827872c7b55ad93059636dfc076 | |
https://github.com/xbmc/xbmc/pull/22380/commits/7e5f9fbf9aaa3540aab35e7504036855b23dcf60 | |
https://lists.debian.org/debian-lts-announce/2024/01/msg00009.html |
Configurations
History
23 Jan 2024, 07:15
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:kodi:kodi:*:*:*:*:*:*:*:* | |
References |
|
|
References | (MISC) https://github.com/xbmc/xbmc/issues/22377 - Exploit, Issue Tracking, Patch, Third Party Advisory | |
References | (MISC) https://github.com/xbmc/xbmc/commit/8c2aafb6d4987833803e037c923aaf83f9ff41e1 - Patch, Third Party Advisory | |
References | (MISC) https://github.com/xbmc/xbmc/pull/22380 - Patch, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.6 |
CWE | CWE-787 |
03 Feb 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-02-03 22:15
Updated : 2024-02-04 23:14
NVD link : CVE-2023-23082
Mitre link : CVE-2023-23082
CVE.ORG link : CVE-2023-23082
JSON object : View
Products Affected
kodi
- kodi
CWE
CWE-787
Out-of-bounds Write