Back

CVE-2024-43688

Aug. 20, 2024, 3:44 p.m.

Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.

Products

OpenBSD

  • 7.4
  • 7.5

Source

cve@mitre.org

Tags

cve@mitre.org
2024-08-20
CVE-2024-43688

CVE-2024-43688 details

Published : Aug. 20, 2024, 6:15 a.m.
Last Modified : Aug. 20, 2024, 3:44 p.m.

Description

cron/entry.c in vixie cron before 9cc8ab1, as used in OpenBSD 7.4 and 7.5, allows a heap-based buffer underflow and memory corruption. NOTE: this issue was introduced during a May 2023 refactoring.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://github.com/vixie/cron/commit/9cc8ab1087bb9ab861dd5595c41200683c9f6712 cve@mitre.org
https://www.supernetworks.org/advisories/CVE-2024-43688-openbsd-cron-heap-underflow.txt cve@mitre.org
This website uses the NVD API, but is not approved or certified by it.