CVE-2023-33552 Information

Description

Heap Buffer Overflow in the erofs_read_one_data function at data.c in erofs-utils v1.6 allows remote attackers to execute arbitrary code via a crafted erofs filesystem image.

Reference

https://github.com/lometsj/blog_repo/issues/1