CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2024-52533

CVSS 9.8v3.1pub. 2024-11-11upd. 2025-06-17

gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.

🤖 AI Analysis
How it works

The SOCKS4_CONN_MSG_LEN constant defines a buffer length that is too small — it does not account for space for the null terminating character ('\0'). When constructing a SOCKS4 connection message, the write extends one byte beyond the allocated memory area, resulting in a classic buffer overflow classified as CWE-120. An attacker can use this to overwrite adjacent memory areas of the process.

Impact

Successful exploitation of this vulnerability may allow an attacker to execute arbitrary code remotely (RCE) on the vulnerable system, as well as compromise the confidentiality, integrity, and availability of data without requiring any special privileges.

Mitigation & patch

GNOME GLib should be updated to version 2.82.1 or later. For Debian systems, patches announced in the debian-lts-announce bulletin from November 2024 should be applied. Users of NetApp products (Active IQ Unified Manager, ONTAP Tools) should follow vendor recommendations and implement available updates according to their references.

Who is affected

GNOME GLib versions before 2.82.1, as well as products based on this library: Debian Linux (including the LTS branch) and NetApp Active IQ Unified Manager and NetApp ONTAP Tools.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Debian

    OS
    Debian
    11.0
  • Gnome Glib

    APP
    Gnome
    < 2.82.1
  • Netapp Active Iq Unified Manager

    APP
    Netapp
    wszystkie wersje
  • Netapp Ontap Tools

    APP
    Netapp
    10
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2026-24061CRITICAL9.8⚠ KEVPL ✓ten sam produkt

GNU Inetutils telnetd: ominięcie uwierzytelnienia przez zmienną USER

CVE-2025-32463CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)

CVE-2025-49113CRITICAL9.9⚠ KEVPL ✓ten sam produkt

RCE przez deserializację PHP w Roundcube Webmail (parametr _from)

CVE-2025-32433CRITICAL10.0⚠ KEVPL ✓ten sam produkt

Erlang/OTP SSH — nieuwierzytelniony RCE (CVSS 10.0)

CVE-2025-24201CRITICAL10.0⚠ KEVPL ✓ten sam produkt

Apple WebKit: out-of-bounds write umożliwiający ucieczkę z sandbox przeglądarki