Unrated severityNVD Advisory· Published Nov 24, 2020· Updated Aug 4, 2024
CVE-2020-28928
CVE-2020-28928
Description
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access (buffer overflow).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- musl libc/musl libcdescription
Patches
Vulnerability mechanics
References
10- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKQ3RVSMVZNZNO4D65W2CZZ4DMYFZN2Q/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UW27QVY7ERPTSGKS4KAWE5TU7EJWHKVQ/mitrevendor-advisoryx_refsource_FEDORA
- www.openwall.com/lists/oss-security/2020/11/20/4mitrex_refsource_CONFIRM
- lists.apache.org/thread.html/r2134abfe847bea7795f0e53756d10a47e6643f35ab8169df8b8a9eb1%40%3Cnotifications.apisix.apache.org%3Emitremailing-listx_refsource_MLIST
- lists.apache.org/thread.html/r90b60cf49348e515257b4950900c1bd3ab95a960cf2469d919c7264e%40%3Cnotifications.apisix.apache.org%3Emitremailing-listx_refsource_MLIST
- lists.apache.org/thread.html/ra63e8dc5137d952afc55dbbfa63be83304ecf842d1eab1ff3ebb29e2%40%3Cnotifications.apisix.apache.org%3Emitremailing-listx_refsource_MLIST
- lists.debian.org/debian-lts-announce/2020/11/msg00050.htmlmitremailing-listx_refsource_MLIST
- musl.libc.org/releases.htmlmitrex_refsource_MISC
- www.oracle.com//security-alerts/cpujul2021.htmlmitrex_refsource_MISC
- www.oracle.com/security-alerts/cpuoct2021.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.