Multiple integer overflows in the TRE library and musl libc allow attackers to cause memory corruption via a large number of (1) states or (2) tags, which triggers an out-of-bounds write.
Max CVSS
9.8
EPSS Score
0.90%
Published
2017-02-13
Updated
2020-07-27
Stack-based buffer overflow in fprintf in musl before 0.8.8 and earlier allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string to an unbuffered stream such as stderr.
Max CVSS
7.5
EPSS Score
1.15%
Published
2012-08-31
Updated
2012-12-19
2 vulnerabilities found