216.73.216.67

CVE-2024-40897

· Published 26/07/2024 06:15 · Modified 26/07/2024 12:38

Labels: CVE-2024-40897 2024-07-26CVE-2024-40897[email protected]

Essential information

Published
26/07/2024 06:15
Modified
26/07/2024 12:38
Author
Creator
CISA KEV
No
CWE

Description

Stack-based buffer overflow vulnerability exists in orcparse.c of ORC versions prior to 0.4.39. If a developer is tricked to process a specially crafted file with the affected ORC compiler, an arbitrary code may be executed on the developer's build environment. This may lead to compromise of developer machines or CI build environments.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References