| Titel | micropython micropython v1.13 to v1.21.0 buffer overflow |
|---|
| Beschreibung | slice_indices misinterprets the float value as an integer value, which leads to a buffer overflow of the target array.
it can be used as an attack vector to read and write the contents over the array (to the chunk placed after the array). |
|---|
| Quelle | ⚠️ https://github.com/micropython/micropython/issues/13007 |
|---|
| Benutzer | qbit (UID 60633) |
|---|
| Einreichung | 28.12.2023 08:54 (vor 2 Jahren) |
|---|
| Moderieren | 28.12.2023 15:29 (7 hours later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 249180 [MicroPython bis 1.21.0 objslice.c slice_indices Pufferüberlauf] |
|---|
| Punkte | 17 |
|---|