accel-ppp icon indicating copy to clipboard operation
accel-ppp copied to clipboard
verified publisher icon xebd

Vulnerability Disclosure

Open whitesquirrell opened this issue 4 years ago • 5 comments

Dear accel-ppp Development Team,

I have filed a vulnerability disclosure by email to [email protected]. Please let me know when it is patched and we can use this issue for tracking purposes.

Thanks!

whitesquirrell avatar Jan 04 '22 06:01 whitesquirrell

Hi @whitesquirrell , make sense, but unfortunately does not possible to produce buffer overflow via the proposed exploit.

DmitriyEshenko avatar Jan 04 '22 07:01 DmitriyEshenko

Hi @DmitriyEshenko, noted. Since the corruption occurs during the exit process, will you still patch the code?

whitesquirrell avatar Jan 05 '22 02:01 whitesquirrell

Sure, we definitely will patch code and open CVE but need time, I guess around 2 weeks

DmitriyEshenko avatar Jan 05 '22 07:01 DmitriyEshenko

Hi @DmitriyEshenko, may I know if the code is patched?

whitesquirrell avatar Jan 24 '22 03:01 whitesquirrell

Looks like this got CVE-2022-0982, but was it fixed?

ajakk avatar Aug 17 '22 19:08 ajakk