Improper Null Termination
CVE-2024-45288
Summary
A missing null-termination character in the last element of an nvlist array string can lead to writing outside the allocated buffer.
- LOW
- LOCAL
- HIGH
- UNCHANGED
- NONE
- NONE
- HIGH
- HIGH
CWE-170 - Improper Null Termination
The software does not terminate or incorrectly terminates a string or array with a null character or equivalent terminator.
References
Advisory Timeline
- Published
