CVE-2024-34403

An issue was discovered in uriparser through 0.9.7. ComposeQueryMallocExMm in UriQuery.c has an integer overflow via a long string.

Published Date :

Last Modified :

Source :

The following products are affected by CVE-2024-34403 vulnerability.

Vendors	Products
Fedoraproject	Fedora
Uriparser Project	Uriparser

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-34403.

URL	Resource
http://www.openwall.com/lists/oss-security/2024/05/06/1
http://www.openwall.com/lists/oss-security/2024/05/06/3
https://github.com/uriparser/uriparser/issues/183
https://github.com/uriparser/uriparser/pull/186
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5R36L762D3KX3GA66OOPWW7M7KKDRXDP/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CZ6KEUQXWCTYXGTBMZDD7CHJCYI52XY3/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UG4J7PD475LSCGCSHFU4GMU4TWLDSNW2/
https://lists.fedoraproject.org/archives/list/[email protected]/message/5R36L762D3KX3GA66OOPWW7M7KKDRXDP/
https://lists.fedoraproject.org/archives/list/[email protected]/message/CZ6KEUQXWCTYXGTBMZDD7CHJCYI52XY3/
https://nvd.nist.gov/vuln/detail/CVE-2024-34403
https://www.cve.org/CVERecord?id=CVE-2024-34403

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact