Changes between Initial Version and Version 1 of CVE-2024-1305


Ignore:
Timestamp:
03/21/24 14:49:38 (6 months ago)
Author:
uddr
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • CVE-2024-1305

    v1 v1  
     1= CVE-2024-1305: Windows TAP driver: Fix potential integer overflow in TapSharedSendPacket
     2
     3Could cause integer overflow, which will result in allocation of smaller size of memory, which later causes buffer overflow and a bug check.
     4
     5Fix by checking overflow condition and fail the IRP in case of overflow.
     6
     7=== References
     8* Release notes: https://www.mail-archive.com/openvpn-users@lists.sourceforge.net/msg07534.html
     9* CVE record: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1305
     10* Reported by: Vladimir Tokarev <​vtokarev@microsoft.com>