CVE-2020-29394

Published: Nov 30, 2020Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

A buffer overflow in the dlt_filter_load function in dlt_common.c from dlt-daemon through 2.18.5 (GENIVI Diagnostic Log and Trace) allows arbitrary code execution because fscanf is misused (no limit on the number of characters to be read in the format argument).

Affected (2)

Products: Genivi: Diagnostic Log And Trace · Debian: Debian Linux

1 product

Diagnostic Log And Trace

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Genivi Diagnostic Log And Trace	Up to 2.18.5

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 10.0

Related CWEs

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (8)

https://github.com/GENIVI/dlt-daemon/issues/274

Source: cve@mitre.org

ExploitPatchThird Party Advisory

https://github.com/GENIVI/dlt-daemon/pull/275

Source: cve@mitre.org

PatchThird Party Advisory

https://github.com/GENIVI/dlt-daemon/pull/288

Source: cve@mitre.org

PatchThird Party Advisory

https://lists.debian.org/debian-lts-announce/2022/12/msg00016.html

Source: cve@mitre.org

Mailing ListThird Party Advisory

https://github.com/GENIVI/dlt-daemon/issues/274

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchThird Party Advisory

https://github.com/GENIVI/dlt-daemon/pull/275

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://github.com/GENIVI/dlt-daemon/pull/288

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://lists.debian.org/debian-lts-announce/2022/12/msg00016.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

Timeline

No history available yet.