CVE-2011-3630

Name of the Vulnerable Software and Affected Versions hardlink versions prior to 0.1.2

Description The issue arises from the way hardlink processes directory trees with deeply nested directories, leading to multiple stack-based buffer overflow flaws. A remote attacker could provide a specially-crafted directory tree and trick the local user into consolidating it. This could result in the hardlink executable crashing or potentially executing arbitrary code with the privileges of the user running the hardlink executable.

Recommendations For versions prior to 0.1.2, update to version 0.1.2 or later to resolve the issue. As a temporary workaround, consider avoiding the consolidation of directory trees with deeply nested directories until a patch is applied.