vulnerability

Debian: CVE-2020-29394: dlt-daemon -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Nov 30, 2020	Dec 9, 2022	Dec 9, 2022

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Nov 30, 2020

Added

Dec 9, 2022

Modified

Dec 9, 2022

Description

A buffer overflow in the dlt_filter_load function in dlt_common.c from dlt-daemon through 2.18.5 (GENIVI Diagnostic Log and Trace) allows arbitrary code execution because fscanf is misused (no limit on the number of characters to be read in the format argument).

Solution

debian-upgrade-dlt-daemon

References

CVE-2020-29394
https://attackerkb.com/topics/CVE-2020-29394
DEBIAN-DLA-3231-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today