Security vulnerabilities and automated fixes for code execution issues
2 posts found
A critical buffer overflow vulnerability was discovered and patched in plugin.c, where five unbounded sprintf() calls wrote into fixed-size buffers without validating input length. An attacker controlling NVMe device names or plugin metadata could exploit this to overwrite return addresses and achieve arbitrary code execution. The fix eliminates these unsafe calls, closing a classic but devastatingly effective attack vector.
A critical buffer overflow vulnerability was discovered and fixed in the system restore utility where unbounded strcpy() calls allowed attacker-controlled data to overflow fixed-size buffers. This classic C programming mistake could enable arbitrary code execution through crafted tape archives, highlighting why secure string handling remains essential in 2024.