A heap-based buffer overflow vulnerability exists in the .egi parsing functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .egi file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
History

Tue, 21 Jan 2025 19:00:00 +0000

Type Values Removed Values Added
First Time appeared Fedoraproject
Fedoraproject fedora
Libbiosig Project
Libbiosig Project libbiosig
Weaknesses CWE-787
CPEs cpe:2.3:a:libbiosig_project:libbiosig:2.5.0:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*
Vendors & Products Fedoraproject
Fedoraproject fedora
Libbiosig Project
Libbiosig Project libbiosig

cve-icon MITRE

Status: PUBLISHED

Assigner: talos

Published: 2024-02-20T15:29:33.400Z

Updated: 2024-08-01T22:27:36.264Z

Reserved: 2024-01-22T16:54:07.492Z

Link: CVE-2024-21795

cve-icon Vulnrichment

Updated: 2024-08-01T22:27:36.264Z

cve-icon NVD

Status : Analyzed

Published: 2024-02-20T16:15:08.130

Modified: 2025-01-21T18:35:09.313

Link: CVE-2024-21795

cve-icon Redhat

No data.