Array index error in the apply_rcs_change function in rcs.c in CVS 1.11.23 allows local users to gain privileges via an RCS file containing crafted delta fragment changes that trigger a heap-based buffer overflow.
References
Configurations
History
13 Feb 2023, 04:26
Type | Values Removed | Values Added |
---|---|---|
Summary | Array index error in the apply_rcs_change function in rcs.c in CVS 1.11.23 allows local users to gain privileges via an RCS file containing crafted delta fragment changes that trigger a heap-based buffer overflow. | |
References |
|
02 Feb 2023, 17:17
Type | Values Removed | Values Added |
---|---|---|
Summary | CVE-2010-3846 cvs: Heap-based buffer overflow by applying RCS file changes | |
References |
|
Information
Published : 2010-11-05 17:00
Updated : 2023-12-10 11:03
NVD link : CVE-2010-3846
Mitre link : CVE-2010-3846
CVE.ORG link : CVE-2010-3846
JSON object : View
Products Affected
nongnu
- cvs
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer