In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfs_istat() in fs/yaffs.c. Upstream patch:

This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product.

Source link

You must be logged in to post a comment.