CVE-2022-28550

Published: Jun 13, 2023Modified: Jan 3, 2025

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Matthias-Wandel/jhead jhead 3.06 is vulnerable to Buffer Overflow via shellescape(), jhead.c, jhead. jhead copies strings to a stack buffer when it detects a &i or &o. However, jhead does not check the boundary of the stack buffer. As a result, there will be a stack buffer overflow problem when multiple `&i` or `&o` are given.

Affected (1)

Products: Jhead Project: Jhead

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Jhead Project Jhead	Version 3.06

Related CWEs

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (4)

https://github.com/Matthias-Wandel/jhead/commit/64894dbc7d8e1e232e85f1cab25c64290b2fc167

Source: cve@mitre.org

Patch

https://github.com/Matthias-Wandel/jhead/issues/51

Source: cve@mitre.org

ExploitIssue TrackingPatchThird Party Advisory

https://github.com/Matthias-Wandel/jhead/commit/64894dbc7d8e1e232e85f1cab25c64290b2fc167

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://github.com/Matthias-Wandel/jhead/issues/51

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitIssue TrackingPatchThird Party Advisory

Timeline

No history available yet.