NotCVE - vendor:"Osgeo" product:"Gdal" version:" >= 3.3.0 <= 3.4.0"

1 results (0.002 seconds)

CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 2

CVE-2021-45943 – Debian Security Advisory 5239-1

https://notcve.org/view.php?id=CVE-2021-45943

31 Dec 2021 — GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::CPCIDSKFile::ReadFromFile (called from PCIDSK::CPCIDSKSegment::ReadFromFile and PCIDSK::CPCIDSKBinarySegment::CPCIDSKBinarySegment). GDAL versiones 3.3.0 hasta 3.4.0, presenta un desbordamiento de búfer en la región heap de la memoria en la función PCIDSK::CPCIDSKFile::ReadFromFile (llamado desde PCIDSK::CPCIDSKSegment::ReadFromFile y PCIDSK::CPCIDSKBinarySegment::CPCIDSKBinarySegment). A heap-based buffer overflow vulnerability was discov... • https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=41993 • CWE-787: Out-of-bounds Write •