Back to search
CVE-2017-6009
Published: Feb 16, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
An issue was discovered in icoutils 0.31.1. A buffer overflow was observed in the "decode_ne_resource_id" function in the "restable.c" source file. This is happening because the "len" parameter for memcpy is not checked for size and thus becomes a negative integer in the process, resulting in a failed memcpy. This affects wrestool.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
GLSA-201801-12
vendor-advisory
x_refsource_GENTOO
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854050
x_refsource_MISC
96292
vdb-entry
x_refsource_BID
RHSA-2017:0837
vendor-advisory
x_refsource_REDHAT
DSA-3807
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now