जमा करें #741901: Open5GS v2.7.6 Buffer Over-readजानकारी

शीर्षकOpen5GS v2.7.6 Buffer Over-read
विवरणOpen5GS version 2.7.6 suffers from a buffer overread, which has been disclosed and acknowledged by the developers and fixed. For reproduction, this can be triggered by executing the VoLTE CX Test, like described in the Github Issue (https://github.com/open5gs/open5gs/issues/4177). The stack buffer ak is logged using OGS_KEY_LEN, but it is allocated with the shorter OGS_AK_LEN. This leads to a stack buffer overread, which is being logged. This mismatch causes a stack buffer over-read during logging, potentially leading to instability or information leakage. This is potentially remotely triggerable.
स्रोत⚠️ https://github.com/open5gs/open5gs/issues/4177
उपयोगकर्ता
 jungnickel (UID 94661)
सबमिशन19/01/2026 10:29 AM (6 महीनों पहले)
संयम02/02/2026 08:02 PM (14 days later)
स्थितिस्वीकृत
VulDB प्रविष्टि343795 [Open5GS तक 2.7.6 VoLTE Cx-Test src/hss/hss-cx-path.c hss_ogs_diam_cx_mar_cb OGS_KEY_LEN बफ़र ओवरफ़्लो]
अंक20

Interested in the pricing of exploits?

See the underground prices here!