../bugs/

bugs

These are some bugs I have found in the past few years, mostly from independent research. Not all of them are security-relevant, which is why they do not have a CVE assigned.

I did not personally request some of these, they are just listed for documentation purposes.

CVE-2024-42320

linux: s390/dasd: NULL pointer dereference

https://lore.kernel.org/linux-cve-announce/2024081754-CVE-2024-42320-cdea@gregkh/

CVE-2024-36481

linux: tracing/probes: NULL pointer dereference in BTF subsystem

https://lore.kernel.org/linux-cve-announce/2024062151-CVE-2024-36481-b416@gregkh/T/

CVE-2023-3766

odoh-rs: invalid slice split leads to remote panic.

https://github.com/cloudflare/odoh-rs/security/advisories/GHSA-gpcv-p28p-fv2p

CVE-2023-34411

xml-rs: reachable assertion when parsing a nested entity tag.

https://github.com/advisories/GHSA-7gf7-jv65-wjmh https://github.com/netvl/xml-rs/pull/226

CVE-2023-3036

cfnts: integer underflow in the NTS packet parser leads to remote DoS.

https://github.com/cloudflare/cfnts/security/advisories/GHSA-pwx6-gw47-96cp

CVE-2023-3040

lua-resty-json: out of bounds access leads to undefined behavior

https://github.com/cloudflare/lua-resty-json/security/advisories/GHSA-h8rp-9622-83pg

CVE-2022-37032

frr: out-of-bounds read in the BGP parser leads to remote information disclosure or denial of service

https://github.com/FRRouting/frr/commit/ff6db1027f8f36df657ff2e5ea167773752537ed

CVE-2022-24986

KCron: Insecure temporary file handling

Found along with my colleagues at SUSE.

https://seclists.org/oss-sec/2022/q1/164

CVE-2019-25074

frr: memory leak in the IS-IS parser may lead to remote DoS

https://github.com/FRRouting/frr/commit/49efc80d342d8e8373c8af040580bd7940808730

CVE-2021-43579

htmldoc: stack buffer overflow in the BMP file parser may lead to code execution

https://github.com/michaelrsweet/htmldoc/issues/453

Other