Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-33864HistoryJun 07, 2023 - 8:15 p.m.
CVE-2023-33864
2023-06-0720:15:10
Debian Security Bug Tracker
security-tracker.debian.org
9
renderdoc
integer overflow
buffer overflow
streamreader
readfromexternal
cve-2023-33864
unix
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.011 Low
EPSS
Percentile
84.8%
StreamReader::ReadFromExternal in RenderDoc before 1.27 allows an Integer Overflow with a resultant Buffer Overflow. It uses uint32_t(m_BufferSize-m_InputSize) even though m_InputSize can exceed m_BufferSize.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | renderdoc | <= 1.24+dfsg-1 | renderdoc_1.24+dfsg-1_all.deb |
| Debian | 11 | all | renderdoc | <= 1.11+dfsg-5 | renderdoc_1.11+dfsg-5_all.deb |
| Debian | 999 | all | renderdoc | <= 1.27+dfsg-1 | renderdoc_1.27+dfsg-1_all.deb |
Related
nvd
nvd
CVE-2023-33864
2023-06-07 20:15:10
cvelist
cvelist
CVE-2023-33864
2023-06-07 00:00:00
osv
osv
CVE-2023-33864
2023-06-07 20:15:10
renderdoc - security update
2023-07-25 00:00:00
ubuntucve
ubuntucve
CVE-2023-33864
2023-06-07 00:00:00
prion
prion
Integer overflow
2023-06-07 20:15:00
cve
cve
CVE-2023-33864
2023-06-07 20:15:10
openvas
openvas
openSUSE: Security Advisory for renderdoc (openSUSE-SU-2023:0253-1)
2024-03-04 00:00:00
Debian: Security Advisory (DLA-3501-1)
2023-07-25 00:00:00
nessus
nessus
openSUSE 15 Security Update : renderdoc (openSUSE-SU-2023:0253-1)
2023-09-26 00:00:00
GLSA-202311-10 : RenderDoc: Multiple Vulnerabilities
2023-11-25 00:00:00
Debian DLA-3501-1 : renderdoc - LTS security update
2023-07-25 00:00:00
qualysblog
qualysblog
Behind the Screen: Three Vulnerabilities in RenderDoc
2023-06-06 17:01:32
debian
debian
[SECURITY] [DLA 3501-1] renderdoc security update
2023-07-25 04:55:40
gentoo
gentoo
RenderDoc: Multiple Vulnerabilities
2023-11-25 00:00:00
packetstorm
packetstorm
RenderDoc 1.26 Local Privilege Escalation / Remote Code Execution
2023-06-08 00:00:00
zdt
zdt
thn
thn
Urgent Security Updates: Cisco and VMware Address Critical Vulnerabilities
2023-06-08 05:18:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.011 Low
EPSS
Percentile
84.8%
Related for DEBIANCVE:CVE-2023-33864