CVE-2018-15157

Severity CVSS v4.0:
Pending analysis
Type:
CWE-125 Out-of-bounds Read
Publication date:
01/09/2018
Last modified:
17/06/2026

Description

The libfsclfs_block_read function in libfsclfs_block.c in libfsclfs before 2018-07-25 allows remote attackers to cause a heap-based buffer over-read via a crafted clfs file. NOTE: the vendor has disputed this as described in the GitHub issue comments

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:libfsclfs_project:libfsclfs:*:*:*:*:*:*:*:* 2018-07-25 (excluding)