VYPR
Unrated severityNVD Advisory· Published Jul 9, 2020· Updated Aug 4, 2024

CVE-2020-7458

CVE-2020-7458

Description

In FreeBSD 12.1-STABLE before r362281, 11.4-STABLE before r362281, and 11.4-RELEASE before p1, long values in the user-controlled PATH environment variable cause posix_spawnp to write beyond the end of the heap allocated stack possibly leading to arbitrary code execution.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • FreeBSD/FreeBSDdescription
  • FreeBSD/FreeBSDllm-fuzzy
    Range: 12.1-STABLE before r362281, 11.4-STABLE before r362281, 11.4-RELEASE before p1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.