CVE-2004-0414
EPSS 5.3%cvs - buffer overflow
發布日:2004/8/6修改日:2026/4/28
描述
CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle malformed "Entry" lines, which prevents a NULL terminator from being used and may lead to a denial of service (crash), modification of critical program data, or arbitrary code execution.
受影響套件(2)
- Debian/cvsfrom 0, < 1:1.12.9-1
- Debian/cvsfrom 0, < 1.11.1p1debian-9woody6