CVE-2017-0357

iucode-tool: heap buffer overflow on -tr loader

EPSS 3.0%

A heap-overflow flaw exists in the -tr loader of iucode-tool starting with v1.4 and before v2.1.1, potentially leading to SIGSEGV, or heap corruption.

Affected products

iucode-tool · iucode-tool

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://gitlab.com/iucode-tool/iucode-tool/issues/3 https://security-tracker.debian.org/tracker/CVE-2017-0357 http://www.securityfocus.com/bid/95432