CNNVD-202506-3198 Information

CNNVD ID

CNNVD-202506-3198

Related CVE

CVE-2025-45332

• CNNVD Published: 2025-06-25

Description (Chinese)

c-ray是Valtteri Koskivuori个人开发者的一个路径跟踪器。 c-ray 1.1版本存在安全漏洞，该漏洞源于parse_mtllib函数存在空指针取消引用，可能导致程序崩溃。

Description (English)

c-ray is a path tracker for the personal developer of Valteri Koskivuori. There is a security loophole in version c-ray 1.1, which stems from the empty pointer unreferenced in the Parse mtllib function, which could lead to the collapse of the program.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

Live Support

Published

2025-06-25

Last Modified

2026-02-24

References

https://gist.github.com/QiuYitai/6ebfa07510828a9464ba7fb948255ed5 https://github.com/vkoskiv/c-ray/issues/119 https://access.redhat.com/security/cve/cve-2025-45332 https://nvd.nist.gov/vuln/detail/CVE-2025-45332

Patch

https://github.com/Mu-L/c-ray/commit/0eadc996aa5ad135969950f368202b3b7b2a293c