MidnightBSD

Advisories for bchunk_project

CVE-2017-15953 MEDIUM

bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to a heap-based buffer overflow and crash when processing a malformed CUE (.cue) file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
bchunk_project bchunk 1.2.0
debian debian_linux 8.0
bchunk_project bchunk 1.2.1
CVE-2017-15954 MEDIUM

bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to a heap-based buffer overflow (with a resultant invalid free) and crash when processing a malformed CUE (.cue) file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
bchunk_project bchunk 1.2.0
debian debian_linux 8.0
bchunk_project bchunk 1.2.1
CVE-2017-15955 MEDIUM

bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to an "Access violation near NULL on destination operand" and crash when processing a malformed CUE (.cue) file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
bchunk_project bchunk 1.2.0
debian debian_linux 8.0
bchunk_project bchunk 1.2.1