CVE-2021-41737

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Faust version 2.23.1

Description The issue arises when an input file contains specific lines, including "// r visualisation tCst", "//process = +: L: abM-^Q;", and "process = route(3333333333333333333,2,1,2,3,1) : *;", leading to stack consumption. This poses a high risk and has been exploited in specific versions.

Recommendations For Faust version 2.23.1, update to the latest version available to mitigate the risk of stack consumption due to the vulnerable input file processing.

Fix

Uncontrolled Recursion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-674

Related Identifiers

CVE-2021-41737

Affected Products

Debian

Faust

CVE-2021-41737

Weakness Enumeration

Related Identifiers

Affected Products

References · 13