SELA 0.1.2-alpha core/apev2.c init_apev2_keys memory corruption

EntryeditHistoryDiffjsonxmlCTI

A vulnerability was found in SELA 0.1.2-alpha. It has been declared as critical. This vulnerability affects the function init_apev2_keys of the file core/apev2.c. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
792489602/10/2020VulD...discoverydate152763840002/10/2020accepted100
792494806/01/2018VulD...cvss3_nvd_basescore7.5nist.gov06/01/2018accepted90
792494706/01/2018VulD...0day_days106/01/2018accepted90
792494606/01/2018VulD...cvss3_vuldb_rcX06/01/2018accepted90
792494506/01/2018VulD...cvss3_vuldb_rlX06/01/2018accepted90
792494406/01/2018VulD...cvss3_vuldb_eX06/01/2018accepted90
792494306/01/2018VulD...cvss2_vuldb_rcND06/01/2018accepted90
792494206/01/2018VulD...cvss2_vuldb_rlND06/01/2018accepted90
792494106/01/2018VulD...cvss2_vuldb_eND06/01/2018accepted90
792494006/01/2018VulD...locationWebsite06/01/2018accepted90
792493906/01/2018VulD...cve_nvd_summarySELA (aka SimplE Lossless Audio) v0.1.2-alpha has a stack-based buffer overflow in the core/apev2.c init_apev2_keys function.mitre.org06/01/2018accepted100
792493806/01/2018VulD...cve_nvd_published1527717600mitre.org06/01/2018accepted100
792493706/01/2018VulD...cve_assigned1527724800mitre.org06/01/2018accepted100
792493606/01/2018VulD...cveCVE-2018-11626mitre.org06/01/2018accepted100
792493506/01/2018VulD...price_0day$0-$5ksee documentation06/01/2018accepted100
792493406/01/2018VulD...urlhttps://github.com/sahaRatul/sela/issues/12github.com06/01/2018accepted100
792493306/01/2018VulD...date1527724800 (05/31/2018)06/01/2018accepted100
792493206/01/2018VulD...cvss3_nvd_aHnist.gov06/01/2018accepted100
792493106/01/2018VulD...cvss3_nvd_iNnist.gov06/01/2018accepted100
792493006/01/2018VulD...cvss3_nvd_cNnist.gov06/01/2018accepted100

Do you know our Splunk app?

Download it now for free!