Unrated severityNVD Advisory· Published Jul 10, 2020· Updated Aug 4, 2024
Heap-based Buffer Overflow in Bareos Director
CVE-2020-11061
Description
In Bareos Director less than or equal to 16.2.10, 17.2.9, 18.2.8, and 19.2.7, a heap overflow allows a malicious client to corrupt the director's memory via oversized digest strings sent during initialization of a verify job. Disabling verify jobs mitigates the problem. This issue is also patched in Bareos versions 19.2.8, 18.2.9 and 17.2.10.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=16.2.10, 17.2.9, 18.2.8, 19.2.7
- Bareos GmbH & Co. KG/Bareos Directorv5Range: <= 16.2.10
Patches
Vulnerability mechanics
References
3- bugs.bareos.org/view.phpmitrex_refsource_MISC
- github.com/bareos/bareos/security/advisories/GHSA-mm45-cg35-54j4mitrex_refsource_CONFIRM
- lists.debian.org/debian-lts-announce/2020/08/msg00051.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.