QwikSec

Security Database

CVE

CWE

Training

CVE-2023-38403

Published: Jul 17, 2023

Modified: Nov 27, 2024

PUBLISHED

Description

iperf3 before 3.14 allows peers to cause an integer overflow and heap corruption via a crafted length field.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://downloads.es.net/pub/iperf/esnet-secadv-2023-0001.txt.asc

https://github.com/esnet/iperf/commit/0ef151550d96cc4460f98832df84b4a1e87c65e9

https://bugs.debian.org/1040830

https://github.com/esnet/iperf/issues/1542

https://cwe.mitre.org/data/definitions/130.html

[debian-lts-announce] 20230725 [SECURITY] [DLA 3506-1] iperf3 security update

mailing-list

FEDORA-2023-5f3b4c0b97

vendor-advisory

FEDORA-2023-04243a1845

vendor-advisory

https://security.netapp.com/advisory/ntap-20230818-0016/

https://support.apple.com/kb/HT213984

https://support.apple.com/kb/HT213985

20231025 APPLE-SA-10-25-2023-4 macOS Sonoma 14.1

mailing-list

20231025 APPLE-SA-10-25-2023-5 macOS Ventura 13.6.1

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.