CVE-2023-33551 Common Vulnerabilities and Exposures

Upstream information

CVE-2023-33551 at MITRE

Description

Heap Buffer Overflow in the erofsfsck_dirent_iter function in fsck/main.c in erofs-utils v1.6 allows remote attackers to execute arbitrary code via a crafted erofs filesystem image.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having important severity.

SUSE Bugzilla entry: 1211941 [RESOLVED / FIXED]

No SUSE Security Announcements cross referenced.

List of released packages

Product(s)	Fixed package version(s)	References
openSUSE Tumbleweed	`erofs-utils >= 1.7-1.1`	Patchnames: openSUSE-Tumbleweed-2024-13318

SUSE Timeline for this CVE

CVE page created: Thu Jun 1 18:00:53 2023
CVE page last modified: Mon Sep 9 14:03:03 2024