iperf3 before 3.14 allows peers to cause an integer overflow and heap corruption via a crafted length field.
References
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
History
21 Nov 2024, 08:13
Type | Values Removed | Values Added |
---|---|---|
References | () http://seclists.org/fulldisclosure/2023/Oct/24 - Mailing List, Third Party Advisory | |
References | () http://seclists.org/fulldisclosure/2023/Oct/26 - Mailing List, Third Party Advisory | |
References | () https://bugs.debian.org/1040830 - Third Party Advisory | |
References | () https://cwe.mitre.org/data/definitions/130.html - Third Party Advisory | |
References | () https://downloads.es.net/pub/iperf/esnet-secadv-2023-0001.txt.asc - Vendor Advisory | |
References | () https://github.com/esnet/iperf/commit/0ef151550d96cc4460f98832df84b4a1e87c65e9 - Patch | |
References | () https://github.com/esnet/iperf/issues/1542 - Issue Tracking, Vendor Advisory | |
References | () https://lists.debian.org/debian-lts-announce/2023/07/msg00025.html - Mailing List, Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BV6EBWWF4PEQKROEVXGYSTIT2MGBTLU7/ - Mailing List, Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M25Z5FHTO3XWMGP37JHJ7IIIHSGCLKEV/ - Mailing List, Third Party Advisory | |
References | () https://security.netapp.com/advisory/ntap-20230818-0016/ - Third Party Advisory | |
References | () https://support.apple.com/kb/HT213984 - Release Notes, Third Party Advisory | |
References | () https://support.apple.com/kb/HT213985 - Release Notes, Third Party Advisory |
09 Jan 2024, 02:53
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:14.0:*:*:*:*:*:*:* cpe:2.3:o:netapp:clustered_data_ontap:9.0:*:*:*:*:*:*:* cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:* |
|
First Time |
Netapp clustered Data Ontap
Netapp ontap Select Deploy Administration Utility Apple Apple macos Netapp |
|
References | () http://seclists.org/fulldisclosure/2023/Oct/24 - Mailing List, Third Party Advisory | |
References | () http://seclists.org/fulldisclosure/2023/Oct/26 - Mailing List, Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BV6EBWWF4PEQKROEVXGYSTIT2MGBTLU7/ - Mailing List, Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M25Z5FHTO3XWMGP37JHJ7IIIHSGCLKEV/ - Mailing List, Third Party Advisory | |
References | () https://security.netapp.com/advisory/ntap-20230818-0016/ - Third Party Advisory | |
References | () https://support.apple.com/kb/HT213984 - Release Notes, Third Party Advisory | |
References | () https://support.apple.com/kb/HT213985 - Release Notes, Third Party Advisory |
Information
Published : 2023-07-17 21:15
Updated : 2024-11-21 08:13
NVD link : CVE-2023-38403
Mitre link : CVE-2023-38403
CVE.ORG link : CVE-2023-38403
JSON object : View
Products Affected
debian
- debian_linux
fedoraproject
- fedora
apple
- macos
netapp
- ontap_select_deploy_administration_utility
- clustered_data_ontap
linux
- linux_kernel
es
- iperf3
CWE
CWE-190
Integer Overflow or Wraparound