CNNVD-202508-948 Information

CNNVD ID

CNNVD-202508-948

Related CVE

CVE-2025-51823

• CNNVD Published: 2025-08-11

Description (Chinese)

GNU libcdio是美国GNU社区的一个用于 CD-ROM 和 CD 映像访问的库。 GNU libcdio 2.0版本存在安全漏洞，该漏洞源于csp_eth_init函数中ifname参数处理不当，可能导致缓冲区溢出。

Description (English)

GNU libcdio is a library for CD-ROM and CD images of the GNU community in the United States. There is a security loophole in version 2.0 of GNU libcdio, which stems from the mishandling of the fname parameters in the csp eth init function, which may result in a buffer zone spilling out.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

GNU

Published

2025-08-11

Last Modified

2026-02-24

References

https://github.com/libcsp/libcsp/issues/850 https://github.com/libcsp/libcsp/pull/852 https://access.redhat.com/security/cve/cve-2025-51823