{"schema_version":"1.7.2","id":"OESA-2024-2213","modified":"2024-10-12T11:09:17Z","published":"2024-10-12T11:09:17Z","upstream":["CVE-2024-22857"],"summary":"zlog security update","details":"zlog is a reliable, high-performance, thread safe, flexible, clear-model, pure C logging library.\r\n\r\nSecurity Fix(es):\r\n\r\nHeap based buffer flow in zlog v1.1.0 to v1.2.17 in zlog_rule_new().The size of record_name is MAXLEN_PATH(1024) + 1 but file_path may have data upto MAXLEN_CFG_LINE(MAXLEN_PATH*4) + 1. So a check was missing in zlog_rule_new() while copying the record_name from file_path + 1 which caused the buffer overflow. An attacker can exploit this vulnerability to overwrite the zlog_record_fn record_func function pointer to get arbitrary code execution or potentially cause remote code execution (RCE).(CVE-2024-22857)","affected":[{"package":{"ecosystem":"openEuler:22.03-LTS-SP3","name":"zlog","purl":"pkg:rpm/openEuler/zlog\u0026distro=openEuler-22.03-LTS-SP3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.15-6.oe2203sp3"}]}],"ecosystem_specific":{"aarch64":["zlog-1.2.15-6.oe2203sp3.aarch64.rpm","zlog-debuginfo-1.2.15-6.oe2203sp3.aarch64.rpm","zlog-debugsource-1.2.15-6.oe2203sp3.aarch64.rpm"],"src":["zlog-1.2.15-6.oe2203sp3.src.rpm"],"x86_64":["zlog-1.2.15-6.oe2203sp3.x86_64.rpm","zlog-debuginfo-1.2.15-6.oe2203sp3.x86_64.rpm","zlog-debugsource-1.2.15-6.oe2203sp3.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2213"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-22857"}],"database_specific":{"severity":"Critical"}}