CVE-2010-3846

EPSS 0.13%

Published: 11/5/2010Modified: 12/3/2025

Description

Array index error in the apply_rcs_change function in rcs.c in CVS 1.11.23 allows local users to gain privileges via an RCS file containing crafted delta fragment changes that trigger a heap-based buffer overflow.

Affected packages (1)

Alpine/cvsfrom 0, < 1.12.12-r0

References (1)

ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2010-3846