admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2020-16124

Browse Source 
Signed-off-by: Sid Faber <sid.faber@canonical.com>
This commit is contained in:
Sid Faber 2020-10-06 11:45:27 -04:00
parent 448196f367
commit 673b210045
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
2020/16xxx/CVE-2020-16124.json
View File

@ -50,7 +50,7 @@
"description_data": [
{
"lang": "eng",
"value": "The ROS 1 XMLRPCPP library relies heavily on implicit conversion between signed integers (type int) and unsigned integers (type SIZE_T). This leads to logic errors and unpredictable parsing with overly large input."
"value": "Integer Overflow or Wraparound vulnerability in the XML RPC library of OpenRobotics ros_comm communications packages allows unauthenticated network traffic to cause unexpected behavior.\nThis issue affects:\nOpenRobotics ros_comm communications packages\nNoetic and prior versions.\nFixed in https://github.com/ros/ros_comm/pull/2065."
}
]
},
@ -103,4 +103,4 @@
"source": {
"discovery": "INTERNAL"
}
}
}