CVE-2005-4178

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2005-4178

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2005-4178.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2005-4178

Published

2005-12-12T21:03:00Z

Modified

2025-04-03T01:03:51Z

Downstream

DSA-923-1

Summary

[none]

Details

Buffer overflow in Dropbear server before 0.47 allows authenticated users to execute arbitrary code via unspecified inputs that cause insufficient memory to be allocated due to an incorrect expression that does not enforce the proper order of operations.

References

Affected packages

Debian:11 / dropbear

Package

Name: dropbear
Purl: pkg:deb/debian/dropbear?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.47-1

Ecosystem specific

{
    "urgency": "high"
}

Debian:12 / dropbear

Package

Name: dropbear
Purl: pkg:deb/debian/dropbear?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.47-1

Ecosystem specific

{
    "urgency": "high"
}

Debian:13 / dropbear

Package

Name: dropbear
Purl: pkg:deb/debian/dropbear?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.47-1

Ecosystem specific

{
    "urgency": "high"
}