GHSA-379r-2p3h-m47vHighCVSS 7.1

libnfs through 6.0.2 before 55c18ea does not validate a string size, leading to an integer...

Published
June 10, 2026
Last Modified
June 10, 2026

🔗 CVE IDs covered (1)

📋 Description

libnfs through 6.0.2 before 55c18ea does not validate a string size, leading to an integer overflow during a connection to a crafted NFS server. This occurs in libnfs_zdr_string in lib/libnfs-zdr.c.

🔗 References (3)