CVE-2013-1428

EPSS 65.5%

tinc - stack based buffer overflow

發布日:2013/4/26修改日:2026/4/28

描述

Stack-based buffer overflow in the receive_tcppacket function in net_packet.c in tinc before 1.0.21 and 1.1 before 1.1pre7 allows remote authenticated peers to cause a denial of service (crash) or possibly execute arbitrary code via a large TCP packet.

受影響套件(2)

Debian/tincfrom 0, < 1.0.19-3
Debian/tincfrom 0, < 1.0.13-1+squeeze1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-1428